Every CVE whose affected-product data names Mulesoft Mule Runtime, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2019-13116 — CVSS 9.8 (critical): The MuleSoft Mule Community Edition runtime engine before 3.8 allows remote attackers to execute arbitrary code because of Java…
CVE-2019-15631 — CVSS 9.8 (critical): Remote Code Execution vulnerability in MuleSoft Mule CE/EE 3.x and API Gateway 2.x released before October 31, 2019 allows remote attackers…
CVE-2019-15630 — CVSS 7.5 (high): Directory Traversal in APIkit, HTTP connector, and OAuth2 Provider components in MuleSoft Mule Runtime 3.2.0 and higher released before…
CVE-2020-6937 — CVSS 7.5 (high): A Denial of Service vulnerability in MuleSoft Mule CE/EE 3.8.x, 3.9.x, and 4.x released before April 7, 2020, could allow remote attackers…