cbcvebase.

Salesforce Mule vulnerabilities

4 known vulnerabilities affecting salesforce/mule.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1

Vulnerabilities

Page 1 of 1
CVE-2021-1626P2CRITICALCVSS 9.8≥ 4.1.0, ≤ 4.2.22021-03-26
CVE-2021-1626 [CRITICAL] CVE-2021-1626: MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runt MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Versions affected: Mule 4.1.x and 4.2.x runtime released before February 2, 2021.
nvd
CVE-2021-1627P3CRITICALCVSS 9.8≥ 3.8.0, ≤ 4.2.22021-03-26
CVE-2021-1627 [CRITICAL] CWE-918 CVE-2021-1627: MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mul MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. This affects: Mule 3.8.x,3.9.x,4.x runtime released before February 2, 2021.
nvd
CVE-2021-1628P3CRITICALCVSS 9.8≥ 4.0.0, ≤ 4.2.22021-03-26
CVE-2021-1628 [CRITICAL] CWE-611 CVE-2021-1628: MuleSoft is aware of a XML External Entity (XXE) vulnerability affecting certain versions of a Mule MuleSoft is aware of a XML External Entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Affected versions: Mule 4.x runtime released before February 2, 2021.
nvd
CVE-2021-1630P3HIGHCVSS 7.5≥ 3.0.0, < 4.3.02021-08-05
CVE-2021-1630 [HIGH] CWE-611 CVE-2021-1630: XML external entity (XXE) vulnerability affecting certain versions of a Mule runtime component that XML external entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect CloudHub, GovCloud, Runtime Fabric, Pivotal Cloud Foundry, Private Cloud Edition, and on-premise customers.
nvd
Salesforce Mule vulnerabilities | cvebase