A credential-exposure vulnerability in the support-bundle mechanism in Gradle Enterprise 2022.3 through 2022.3.3 allows remote attackers to access a subset of application data (e.g., cleartext credentials). This is fixed in 2022.3.3.
CPE | Name | Operator | Version |
---|---|---|---|
enterprise | ge | 2022.3 | |
enterprise | lt | 2022.3.3 |