CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-41575

A credential-exposure vulnerability in the support-bundle mechanism in Gradle Enterprise 2022.3 through 2022.3.3 allows remote attackers to access a subset of application data (e.g., cleartext credentials). This is fixed in 2022.3.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.1%

CVSS Severity

CVSS v3 Score 7.5

References

https://security.gradle.com
https://security.gradle.com/advisory/2022-13
https://security.gradle.com
https://security.gradle.com/advisory/2022-13

Products affected by CVE-2022-41575

Gradle » Enterprise » Version: 2022.3.1

cpe:2.3:a:gradle:enterprise:2022.3.1
Gradle » Enterprise » Version: 2022.3.2

cpe:2.3:a:gradle:enterprise:2022.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41575

Products

Pricing

Contact Us