← back
CVE-2020-15773

CVE-2020-15773

EPSS 0.4%
An issue was discovered in Gradle Enterprise before 2020.2.4. Because of unrestricted cross-origin requests to read-only data in the Export API, an attacker can access data as a user (for the duration of the browser session) after previously explicitly authenticating with the API.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/gradle/gradle/security/advisorieshttps://security.gradle.com/advisory/CVE-2020-15773