9.8 High
AI Score
Confidence
High
0.037 Low
EPSS
Percentile
91.8%
The MuleSoft Mule runtime engine before 3.8.0 allows remote attackers to execute arbitrary code because of Java Deserialization, related to Apache Commons Collections.
docs.mulesoft.com/release-notes/mule-runtime/mule-3.8.0-release-notes
github.com/mulesoft/mule
nvd.nist.gov/vuln/detail/CVE-2019-13116
threat.tevora.com/mulesoft-3-8-unauthenticated-rce