Vulnerabilities > Gradle > Gradle > 6.5.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-06 | CVE-2023-42445 | XXE vulnerability in Gradle Gradle is a build tool with a focus on build automation and support for multi-language development. | 5.3 |
| 2023-10-05 | CVE-2023-44387 | Incorrect Permission Assignment for Critical Resource vulnerability in Gradle Gradle is a build tool with a focus on build automation and support for multi-language development. | 6.5 |
| 2023-06-30 | CVE-2023-35946 | Path Traversal vulnerability in Gradle Gradle is a build tool with a focus on build automation and support for multi-language development. | 5.5 |
| 2023-06-30 | CVE-2023-35947 | Path Traversal vulnerability in Gradle Gradle is a build tool with a focus on build automation and support for multi-language development. | 8.1 |
| 2023-03-02 | CVE-2023-26053 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Gradle Gradle is a build tool with a focus on build automation and support for multi-language development. | 9.8 |
| 2022-07-14 | CVE-2022-31156 | Improper Verification of Cryptographic Signature vulnerability in Gradle Gradle is a build tool. | 4.4 |
| 2022-02-10 | CVE-2022-23630 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Gradle Gradle is a build tool with a focus on build automation and support for multi-language development. | 6.0 |
| 2021-07-20 | CVE-2021-32751 | OS Command Injection vulnerability in Gradle Gradle is a build tool with a focus on build automation. | 8.5 |
| 2021-04-13 | CVE-2021-29428 | Creation of Temporary File in Directory with Incorrect Permissions vulnerability in multiple products In Gradle before version 7.0, on Unix-like systems, the system temporary directory can be created with open permissions that allow multiple users to create and delete files within it. | 4.4 |
| 2021-04-13 | CVE-2021-29427 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products In Gradle from version 5.1 and before version 7.0 there is a vulnerability which can lead to information disclosure and/or dependency poisoning. | 6.0 |