Lucene search
K

7 matches found

NVD
NVD
added 2019/07/03 8:15 p.m.24 views

CVE-2019-10101

JetBrains Kotlin versions before 1.3.30 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack...

8.1CVSS8AI score0.0162EPSS
Exploits2References3
OSV
OSV
added 2019/07/03 8:15 p.m.26 views

CVE-2019-10103

JetBrains IntelliJ IDEA projects created using the Kotlin JS Client/JVM Server IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin plugin version 1.3.30, is similar to CVE-2019-10101...

8.1CVSS8AI score
Exploits0References2
Prion
Prion
added 2019/07/03 8:15 p.m.30 views

Code injection

JetBrains IntelliJ IDEA projects created using the Kotlin JS Client/JVM Server IDE Template were resolving Gradle artifacts using an http connection, potentially allowing an MITM attack. This issue, which was fixed in Kotlin plugin version 1.3.30, is similar to CVE-2019-10101...

6.8CVSS7.9AI score0.0162EPSS
Exploits2References2Affected Software1
Debian CVE
Debian CVE
added 2019/07/03 12:0 a.m.34 views

CVE-2019-10101

JetBrains Kotlin versions before 1.3.30 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack...

8.1CVSS8.1AI score0.0162EPSS
Exploits2
Debian CVE
Debian CVE
added 2019/07/03 12:0 a.m.24 views

CVE-2019-10103

Removed by vendor...

8.1CVSS8AI score0.00944EPSS
Exploits0
CVE
CVE
added 2019/07/03 12:0 a.m.278 views

CVE-2019-10103

CVE-2019-10103 : Kotlin/IntelliJ template misuse allowed Gradle artifacts to be resolved over http, enabling MITM risk. Root cause: Kotlin plugin used non-secure http for artifact resolution in the Kotlin (JS Client/JVM Server) IDE Template. Impact described as insecure Gradle fetch during builds...

8.1CVSS7.8AI score0.00944EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/07/03 12:0 a.m.280 views

CVE-2019-10101

CVE-2019-10101 affects JetBrains Kotlin versions before 1.3.30, where Gradle/artifact resolution used HTTP during the build, enabling an MITM attacker to intercept artifacts. The concrete detail from public sources confirms the vulnerability is tied to cleartext transmissions during artifact reso...

8.1CVSS7.9AI score0.0162EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder