2 matches found
CVE-2020-15768
An issue was discovered in Gradle Enterprise 2017.3 - 2020.2.4 and Gradle Enterprise Build Cache Node 1.0 - 9.2. Unrestricted HTTP header reflection in Gradle Enterprise allows remote attackers to obtain authentication cookies, if they are able to discover a separate XSS vulnerability. This...
CVE-2020-15768
Gradle Enterprise (versions 2017.3–2020.2.4) and Gradle Enterprise Build Cache Node (versions 1.0–9.2) are affected by an unrestricted HTTP header reflection vulnerability that can allow remote attackers to obtain authentication cookies and impersonate a user if a separate XSS issue exists. Affec...