Jboss Drools

jboss_drools

Vendor: Redhat • 2 CVEs

CVEs (2)

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2016-7041

1Redhat

2Jboss Brms

Jboss Drools

Nov 21, 2024

Sep 10, 2018

N/A· v4

6.5 MEDIUM· v3

6.8 MEDIUM· v2

Drools Workbench contains a path traversal vulnerability. The vulnerability allows a remote, authenticated attacker to bypass the directory restrictions and retrieve arbitrary files from the affected host.

CVE-2013-6468

1Redhat

3Jboss Bpm Suite

Jboss DroolsJboss Enterprise Brms Platform

May 6, 2026

Apr 10, 2014

N/A· v4

N/A· v3

6.5 MEDIUM· v2

JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or (2) Drools expressio...Show more