Vulnerabilities > Gradle > Enterprise

DATE CVE VULNERABILITY TITLE RISK
2020-09-18 CVE-2020-15776 Unspecified vulnerability in Gradle Enterprise
An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4.
network
low complexity
gradle
8.8
2020-09-18 CVE-2020-15775 Insecure Storage of Sensitive Information vulnerability in Gradle Enterprise
An issue was discovered in Gradle Enterprise 2017.1 - 2020.2.4.
network
low complexity
gradle CWE-922
7.5
2020-09-18 CVE-2020-15774 Insufficient Session Expiration vulnerability in Gradle Enterprise
An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4.
low complexity
gradle CWE-613
6.8
2020-09-18 CVE-2020-15772 Server-Side Request Forgery (SSRF) vulnerability in Gradle Enterprise
An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4.
network
low complexity
gradle CWE-918
4.9
2020-09-18 CVE-2020-15771 Missing Encryption of Sensitive Data vulnerability in Gradle Enterprise and Enterprise Cache Node
An issue was discovered in Gradle Enterprise 2018.2 and Gradle Enterprise Build Cache Node 4.1.
network
low complexity
gradle CWE-311
5.0
2020-09-18 CVE-2020-15770 Improper Restriction of Excessive Authentication Attempts vulnerability in Gradle Enterprise 2018.5
An issue was discovered in Gradle Enterprise 2018.5.
local
low complexity
gradle CWE-307
5.5
2020-09-18 CVE-2020-15769 Cross-site Scripting vulnerability in Gradle Enterprise 2020.2/2020.2.4
An issue was discovered in Gradle Enterprise 2020.2 - 2020.2.4.
network
gradle CWE-79
4.3
2020-09-18 CVE-2020-15768 Unspecified vulnerability in Gradle Enterprise and Enterprise Cache Node
An issue was discovered in Gradle Enterprise 2017.3 - 2020.2.4 and Gradle Enterprise Build Cache Node 1.0 - 9.2.
network
low complexity
gradle
7.5
2020-09-18 CVE-2020-15767 Missing Encryption of Sensitive Data vulnerability in Gradle Enterprise
An issue was discovered in Gradle Enterprise before 2020.2.5.
network
high complexity
gradle CWE-311
2.6
2019-04-22 CVE-2019-11403 Information Exposure vulnerability in Gradle Build Cache Node and Enterprise
In Gradle Enterprise before 2018.5.2, Build Cache Nodes would reflect the configured password back when viewing the HTML page source of the settings page.
network
low complexity
gradle CWE-200
critical
9.8