Security Advisory

CVE-2019-11065

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-09 23:37:04

Last updated 2024-08-04 22:40:16

Assigner mitre

State PUBLISHED

Description

Gradle versions from 1.4 to 5.3.1 use an insecure HTTP URL to download dependencies when the built-in JavaScript or CoffeeScript Gradle plugins are used. Dependency artifacts could have been maliciously compromised by a MITM attack against the ajax.googleapis.com web site.

← Browse all CVEs View on cve.org ↗