Mulesoft Luki w zabezpieczeniach

Oś czasu

Rodzaj

Not Defined	8
Automation Software	2

Produkt

MuleSoft Mule	8
MuleSoft Mule Community Edition	2
MuleSoft Mule Enterprise Edition	2
MuleSoft API Gateay	2

Przeciwdziałanie

Official Fix	8
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	2

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	10

Wektor dostępu

Not Defined	0
Physical	0
Local	0
Adjacent	6
Network	4

Uwierzytelnianie

Not Defined	0
High	0
Low	8
None	2

Interakcja z użytkownikiem

Not Defined	0
Required	0
None	10

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	2
≤8	6
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	2
≤8	6
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	8
≤7	2
≤8	0
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	2
≤9	0
≤10	6

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	2
<2k	6
<5k	2
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	10
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Products (7): API Gateay (2), APIkit (1), Mule (4), Mule Community Edition (2), Mule Enterprise Edition (2), Mule Enterprise Management Console (1), Mule Runtime Engine (1)

Opublikowano	Base	Temp	Słaby punkt	Prod	Wyk	Prz	EPSS	CTI	CVE
2021-08-06	5.5	5.5	MuleSoft Mule XML External Entity	Nieznany	Not Defined	Not Defined	0.00168	0.00	CVE-2021-1630
2021-03-27	7.6	7.3	MuleSoft Mule Runtime XML External Entity	Nieznany	Not Defined	Official Fix	0.00222	0.00	CVE-2021-1628
2021-03-27	7.6	7.3	MuleSoft Mule Runtime privilege escalation	Nieznany	Not Defined	Official Fix	0.00222	0.00	CVE-2021-1627
2021-03-27	8.0	7.7	MuleSoft Mule Runtime Privilege Escalation	Nieznany	Not Defined	Official Fix	0.00650	0.00	CVE-2021-1626
2020-05-29	6.4	6.1	MuleSoft Mule Community Edition denial of service	Automation Software	Not Defined	Official Fix	0.00206	0.02	CVE-2020-6937
2020-03-27	8.5	8.5	MuleSoft APIkit RestXmlSchemaValidator.java XML External Entity	Nieznany	Not Defined	Not Defined	0.00659	0.00	CVE-2020-10991
2019-12-02	9.0	8.9	MuleSoft Mule Community Edition privilege escalation	Automation Software	Not Defined	Official Fix	0.01356	0.04	CVE-2019-15631
2019-10-16	8.5	8.4	MuleSoft Mule Runtime Engine Apache Commons Collections privilege escalation	Nieznany	Not Defined	Official Fix	0.03672	0.02	CVE-2019-13116
2014-11-20	6.3	6.3	Mulesoft Mule Enterprise Management Console privilege escalation	Nieznany	Not Defined	Not Defined	0.01407	0.00	CVE-2014-9000

◂ PoprzedniPrzeglądKolejny ▸

Interested in the pricing of exploits?

See the underground prices here!