exploitDog

CVE-2019-11402

Опубликовано: 22 апр. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 5

EPSS Низкий

Описание

In Gradle Enterprise before 2018.5.3, Build Cache Nodes did not store the credentials at rest in an encrypted format.

Ссылки

https://gradle.com/enterprise/releases/2018.5/#changes-3
Release Notes
Vendor Advisory
https://security.gradle.com/advisory/CVE-2019-11402
Broken Link
https://gradle.com/enterprise/releases/2018.5/#changes-3
Release Notes
Vendor Advisory
https://security.gradle.com/advisory/CVE-2019-11402
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gradle:enterprise:*:*:*:*:*:*:*:*

Версия до 2018.5.3 (исключая)

EPSS

Процентиль: 56%

0.0034

Низкий

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-522

Связанные уязвимости

GHSA-rxx5-6r7x-q8xv

CVSS3: 9.8

github

больше 3 лет назад

In Gradle Enterprise before 2018.5.3, Build Cache Nodes did not store the credentials at rest in an encrypted format.

EPSS

Процентиль: 56%

0.0034

Низкий

9.8 Critical

CVSS3

5 Medium

CVSS2

Дефекты

CWE-522