3 matches found
CVE-2020-15773
An issue was discovered in Gradle Enterprise before 2020.2.4. Because of unrestricted cross-origin requests to read-only data in the Export API, an attacker can access data as a user for the duration of the browser session after previously explicitly authenticating with the API...
CVE-2020-15773
An issue was discovered in Gradle Enterprise before 2020.2.4. Because of unrestricted cross-origin requests to read-only data in the Export API, an attacker can access data as a user for the duration of the browser session after previously explicitly authenticating with the API...
CVE-2020-15773
The CVE refers to Gradle Enterprise prior to version 2020.2.4, where unrestricted cross-origin requests to read-only data in the Export API allowed an attacker to access a user’s data for the duration of a browser session after authentication. Affected component: Export API data read access due t...