CVE-2019-11403

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Gradle Enterprise versions prior to 2018.5.2

Description The issue allows the configured password to be reflected back when viewing the HTML page source of the settings page in Build Cache Nodes.

Recommendations For versions prior to 2018.5.2, update to version 2018.5.2 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2019-11403

Affected Products

Gradle Enterprise

CVE-2019-11403

Weakness Enumeration

Related Identifiers

Affected Products

References · 5