CVE-2020-15777

Name of the Vulnerable Software and Affected Versions Maven Extension plugin versions prior to 1.6 for Gradle Enterprise

Description An issue was discovered in the Maven Extension plugin, where the extension uses a socket connection to send serialized Java objects. Deserialization is not restricted to an allow-list, thus allowing an attacker to achieve code execution via a malicious deserialization gadget chain. The socket is not bound exclusively to localhost and the port is randomly selected, which could potentially be used to achieve remote code execution and local privilege escalation. This issue can lead to, in the worst case, Remote Code Execution, and in the general case, local privilege escalation.

Recommendations For versions prior to 1.6, update to version 1.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the socket connection or disabling the deserialization of Java objects until a patch is available. Restrict the use of the ObjectInputStream to a list of trusted classes to minimize the risk of exploitation.