Описание
Incorrect Resource Transfer Between Spheres in Grails
Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.
Пакеты
Наименование
org.grails:grails-core
maven
Затронутые версииВерсия исправления
< 3.3.10
3.3.10
Связанные уязвимости
CVSS3: 8.1
nvd
больше 6 лет назад
Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.
CVSS3: 8.1
debian
больше 6 лет назад
Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notific ...