Описание
Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| grails | itp | package |
Связанные уязвимости
CVSS3: 8.1
nvd
больше 6 лет назад
Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.
CVSS3: 8.1
github
больше 3 лет назад
Incorrect Resource Transfer Between Spheres in Grails