7 matches found
CVE-2019-10101
JetBrains Kotlin versions before 1.3.30 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack...
CVE-2019-10103
JetBrains IntelliJ IDEA projects created using the Kotlin JS Client/JVM Server IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin plugin version 1.3.30, is similar to CVE-2019-10101...
Code injection
JetBrains IntelliJ IDEA projects created using the Kotlin JS Client/JVM Server IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin plugin version 1.3.30, is similar to CVE-2019-10101...
CVE-2019-10101
JetBrains Kotlin versions before 1.3.30 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack...
CVE-2019-10103
Removed by vendor...
CVE-2019-10103
CVE-2019-10103 : Kotlin/IntelliJ template misuse allowed Gradle artifacts to be resolved over http, enabling MITM risk. Root cause: Kotlin plugin used non-secure http for artifact resolution in the Kotlin (JS Client/JVM Server) IDE Template. Impact described as insecure Gradle fetch during builds...
CVE-2019-10101
CVE-2019-10101 affects JetBrains Kotlin versions before 1.3.30, where Gradle/artifact resolution used HTTP during the build, enabling an MITM attacker to intercept artifacts. The concrete detail from public sources confirms the vulnerability is tied to cleartext transmissions during artifact reso...