Vulnerabilities > Mulesoft > Mule Runtime > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-02 | CVE-2019-15631 | Unspecified vulnerability in Mulesoft API Gateway and Mule Runtime Remote Code Execution vulnerability in MuleSoft Mule CE/EE 3.x and API Gateway 2.x released before October 31, 2019 allows remote attackers to execute arbitrary code. | 9.8 |
| 2019-10-16 | CVE-2019-13116 | Deserialization of Untrusted Data vulnerability in Mulesoft Mule Runtime 3.2.0 The MuleSoft Mule Community Edition runtime engine before 3.8 allows remote attackers to execute arbitrary code because of Java Deserialization, related to Apache Commons Collections | 9.8 |