GCVE - cpe:2.3:a:salesforce:mule:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:salesforce:mule:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Salesforce (`cfdafdea-90cf-5590-ad24-239f205b7d02`)
Product	Mule (`fa726bbd-936f-5b49-ba97-aa82084bc2da`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/mulesoft/mule`	purl2cpe	2026-06-01 10:11:22.401103
`pkg:maven/org.mule/mule`	purl2cpe	2026-06-01 10:11:22.401105

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-1630`	vulnerable	2026-06-03 14:43:30.491484	Details available XML external entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect CloudHub, GovCloud, Runtime Fabric, Pivotal Cloud Foundry, Private Cloud Edition, and on-premise customers. Published: 2021-08-05T20:29:15.000Z Updated: 2024-08-03T16:18:10.684Z Open on db.gcve.eu Reference links https://help.salesforce.com/articleView?id=000362693&type=1&mode=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-1628`	vulnerable	2026-06-03 14:43:30.488830	Details available MuleSoft is aware of a XML External Entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Affected versions: Mule 4.x runtime released before February 2, 2021. Published: 2021-03-26T16:19:39.000Z Updated: 2024-08-03T16:18:10.681Z Open on db.gcve.eu Reference links https://help.salesforce.com/articleView?id=000357384&type=1&mode=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-1627`	vulnerable	2026-06-03 14:43:30.488549	Details available MuleSoft is aware of a Server Side Request Forgery vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. This affects: Mule 3.8.x,3.9.x,4.x runtime released before February 2, 2021. Published: 2021-03-26T16:17:53.000Z Updated: 2024-08-03T16:18:10.987Z Open on db.gcve.eu Reference links https://help.salesforce.com/articleView?id=000357383&type=1&mode=1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-1626`	vulnerable	2026-06-03 14:43:30.488161	Details available MuleSoft is aware of a Remote Code Execution vulnerability affecting certain versions of a Mule runtime component that may affect both CloudHub and on-premise customers. Versions affected: Mule 4.1.x and 4.2.x runtime released before February 2, 2021. Published: 2021-03-26T16:17:41.000Z Updated: 2024-08-03T16:18:10.872Z Open on db.gcve.eu Reference links https://help.salesforce.com/articleView?id=000357382&type=1&mode=1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.