Vulnerabilities > CVE-2020-6937 - Unspecified vulnerability in Mulesoft Mule Runtime

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

mulesoft

NVD

Published: 2020-05-29

Updated: 2021-07-21

Summary

A Denial of Service vulnerability in MuleSoft Mule CE/EE 3.8.x, 3.9.x, and 4.x released before April 7, 2020, could allow remote attackers to submit data which can lead to resource exhaustion.

Vulnerable Configurations

Part	Description	Count
Application	Mulesoft Mulesoft Mule Runtime * Mulesoft Mule Runtime 3.9.4 Mulesoft Mule Runtime 4.0.0 Mulesoft Mule Runtime 4.2.2 Mulesoft Mule Runtime 4.3.0	10

References

https://help.salesforce.com/articleView?id=000353701&language=en_US&type=1&mode=1