Vulnerabilities

CVE-2020-15773

by Fred · 18/09/2020

An issue was discovered in Gradle Enterprise before 2020.2.4. Because of unrestricted cross-origin requests to read-only data in the Export API, an attacker can access data as a user (for the duration of the browser session) after previously explicitly authenticating with the API.

Date published : 2020-09-18

https://security.gradle.com/advisory/CVE-2020-15773

https://github.com/gradle/gradle/security/advisories

Similar

Tags: Cybersecurity Alert