CVE-2014-8125
Published
CVSS v3
N/A
CVSS v2
7.5
HIGH
Affected
2
PROJECTS
Description
XML external entity (XXE) vulnerability in Drools and jBPM before 6.2.0 allows remote attackers to read arbitrary files or possibly have other unspecified impact via a crafted BPMN2 file.
Drools is a rule engine, DMN engine and complex event processing (CEP) engine for Java
GitHub