CVE-2021-1626

2021-03-2616:17:41

Salesforce

www.cve.org

mulesoft

remote code execution

mule runtime component

cloudhub

on-premise customers

vulnerability

AI Score

9.9

Confidence

High

EPSS

0.006

Percentile

79.5%

JSON

MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Versions affected: Mule 4.1.x and 4.2.x runtime released before February 2, 2021.

CNA Affected

[
  {
    "product": "Mulesoft",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Mule 4.1.x and 4.2.x runtime released before February 2, 2021"
      }
    ]
  }
]

References

help.salesforce.com/articleView?id=000357382&type=1&mode=1