CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-41584

Gradle Enterprise before 2021.1.3 can allow unauthorized viewing of a response (information disclosure of possibly sensitive build/configuration details) via a crafted HTTP request with the X-Gradle-Enterprise-Ajax-Request header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://security.gradle.com/advisory/2021-02
https://security.gradle.com/advisory/2021-02

Products affected by CVE-2021-41584

Gradle » Gradle » Version: Any

cpe:2.3:a:gradle:gradle:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-41584

Products

Pricing

Contact Us