In Gradle Enterprise before 2021.1.3, an attacker with the ability to perform SSRF attacks can potentially reset the system user password.
References
Link | Resource |
---|---|
https://security.gradle.com/advisory/2021-05 | Vendor Advisory |
Configurations
Information
Published : 2021-09-24 08:15
Updated : 2021-09-30 10:26
NVD link : CVE-2021-41586
Mitre link : CVE-2021-41586
JSON object : View
CWE
CWE-918
Server-Side Request Forgery (SSRF)
Products Affected
gradle
- gradle