CVE-2023-50571

Name of the Vulnerable Software and Affected Versions easy-rules-mvel version 4.1.0

Description The issue is related to a remote code execution (RCE) vulnerability via the component MVELRule. This allows for potential exploitation, but specific details about the estimated number of affected devices or real-world incidents are not provided.

Recommendations For easy-rules-mvel version 4.1.0, consider disabling the mVELRule component as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.