🔍 What is Drools?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-41411

CRITICAL CVSS 9.8 Jun 16, 2022

This XML External Entity (XXE) vulnerability in Drools allows attackers to read arbitrary files from the server filesystem or perform server-side request forgery (SSRF) attacks. It affects all Drools ...

CVE-2022-1415

HIGH CVSS 8.1 Sep 11, 2023

CVE-2022-1415 is a deserialization vulnerability in Drools core utility classes that allows authenticated attackers to execute arbitrary code on affected servers by sending malicious serialized object...

📦 Drools

🔍 What is Drools?

🛡️ Security Overview

⚠️ Known Vulnerabilities

CVE-2021-41411

CVE-2022-1415