pkg:Debian/gradle

所有已知漏洞

• CRITICAL9.8CVE-2019-15052The HTTP client in Gradle before 5.6 sends authentication credentials originally destined for the configured host.
  from 0
• CRITICAL9.8CVE-2016-6199ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object.
  from 0, < 2.13-1
• HIGH8.1CVE-2023-35947Path traversal vulnerabilities in handling of Tar archives in Gradle
  from 0
• HIGH7.8CVE-2021-29428Local privilege escalation through system temporary directory
  from 0
• HIGH7.5CVE-2021-32751Arbitrary code execution via specially crafted environment variables
  from 0
• HIGH7.4CVE-2026-22865Gradle's failure to disable repositories failing to answer can expose builds to malicious artifacts
  from 0
• HIGH7.4CVE-2026-22816Gradle fails to disable repositories which can expose builds to malicious artifacts
  from 0
• MEDIUM6.5CVE-2023-44387Gradle has incorrect permission assignment for symlinked files used in copy or archiving operations
  from 0
• MEDIUM5.9CVE-2019-16370Use of a weak cryptographic algorithm in Gradle
  from 0
• MEDIUM5.9CVE-2019-11065Insecure transport protocol in Gradle
  from 0, < 4.4.1-10
• MEDIUM5.5CVE-2023-35946Dependency cache path traversal in Gradle
  from 0
• MEDIUM5.5CVE-2021-29429Information disclosure through temporary directory permissions
  from 0
• MEDIUM5.3CVE-2023-42445Possible local file exfiltration by XML External entity injection
  from 0