Vulnerabilities > Gradle > Enterprise > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-16 | CVE-2022-27225 | Missing Encryption of Sensitive Data vulnerability in Gradle Enterprise Gradle Enterprise before 2021.4.3 relies on cleartext data transmission in some situations. | 6.5 |
| 2021-10-27 | CVE-2021-41590 | Unspecified vulnerability in Gradle Enterprise 2020.4 In Gradle Enterprise through 2021.3, probing of the server-side network environment can occur via an SMTP configuration test. | 5.3 |
| 2020-09-18 | CVE-2020-15773 | Origin Validation Error vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise before 2020.2.4. | 6.5 |
| 2020-09-18 | CVE-2020-15774 | Insufficient Session Expiration vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. | 6.8 |
| 2020-09-18 | CVE-2020-15772 | Server-Side Request Forgery (SSRF) vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. | 4.9 |
| 2020-09-18 | CVE-2020-15770 | Improper Restriction of Excessive Authentication Attempts vulnerability in Gradle Enterprise 2018.5 An issue was discovered in Gradle Enterprise 2018.5. | 5.5 |
| 2020-09-18 | CVE-2020-15769 | Cross-site Scripting vulnerability in Gradle Enterprise 2020.2/2020.2.4 An issue was discovered in Gradle Enterprise 2020.2 - 2020.2.4. | 6.1 |
| 2020-09-18 | CVE-2020-15767 | Missing Encryption of Sensitive Data vulnerability in Gradle Enterprise An issue was discovered in Gradle Enterprise before 2020.2.5. | 5.3 |