Mule
Vulnerabilities
4
Known exploited
0
Max CVSS
9.8
Top EPSS
0.02031
Severity breakdown
Critical
3
High
1
Medium
0
Low
0
Affected version ranges
3.0.0–4.3.03.8.0–4.2.24.0.0–4.2.24.1.0–4.2.2
Also matched as (raw): mule
Top vulnerabilities
CVE-2021-1628MuleSoft is aware of a XML External Entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Affected versions: Mule 4.x runtime released before February 2, 2021.
CVE-2021-1627MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. This affects: Mule 3.8.x,3.9.x,4.x runtime released before February 2, 2021.
CVE-2021-1626MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Versions affected: Mule 4.1.x and 4.2.x runtime released before February 2, 2021.
CVE-2021-1630XML external entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect CloudHub, GovCloud, Runtime Fabric, Pivotal Cloud Foundry, Private Cloud Edition, and on-premise customers.