CVE-2022-27225
Gradle Enterprise before 2021.4.3 is affected by a session‑level vulnerability related to Keycloak cookies. During sign‑in, Keycloak sets cookies that effectively enable remember‑me functionality; for older Safari versions, a duplicate cookie is created without the Secure attribute. This allows t...