Vulnerabilities > Gradle > Gradle

DATE CVE VULNERABILITY TITLE RISK
2023-10-06 CVE-2023-42445 XXE vulnerability in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development.
network
high complexity
gradle CWE-611
5.3
5.3
2023-10-05 CVE-2023-44387 Incorrect Permission Assignment for Critical Resource vulnerability in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development.
local
low complexity
gradle CWE-732
6.5
6.5
2023-06-30 CVE-2023-35946 Path Traversal vulnerability in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development.
local
low complexity
gradle CWE-22
5.5
5.5
2023-06-30 CVE-2023-35947 Path Traversal vulnerability in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development.
network
high complexity
gradle CWE-22
8.1
8.1
2023-03-02 CVE-2023-26053 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development.
network
low complexity
gradle CWE-829
critical
 9.8
9.8
2022-07-14 CVE-2022-31156 Improper Verification of Cryptographic Signature vulnerability in Gradle
Gradle is a build tool.
network
high complexity
gradle CWE-347
4.4
4.4
2022-06-06 CVE-2022-30586 Information Exposure vulnerability in Gradle
Gradle Enterprise through 2022.2.2 has Incorrect Access Control that leads to code execution.
network
low complexity
gradle CWE-200
7.2
7.2
2022-02-10 CVE-2022-23630 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Gradle
Gradle is a build tool with a focus on build automation and support for multi-language development.
network
gradle CWE-829
6.0
6.0
2021-09-24 CVE-2021-41586 Server-Side Request Forgery (SSRF) vulnerability in Gradle
In Gradle Enterprise before 2021.1.3, an attacker with the ability to perform SSRF attacks can potentially reset the system user password.
network
low complexity
gradle CWE-918
5.0
5.0
2021-09-24 CVE-2021-41587 Server-Side Request Forgery (SSRF) vulnerability in Gradle
In Gradle Enterprise before 2021.1.3, an attacker with the ability to perform SSRF attacks can potentially discover credentials for other resources.
network
low complexity
gradle CWE-918
5.0
5.0