Enterprise Cache Node Security Vulnerabilities and Issues — Enterprise Cache Node CVE List

Lucene search

GradleEnterprise Cache Node

2 matches found

CVE•added 2020/09/18 2:15 p.m.•32 views

CVE-2020-15771

An issue was discovered in Gradle Enterprise 2018.2 and Gradle Enterprise Build Cache Node 4.1. Cross-site transmission of cookie containing CSRF token allows remote attacker to bypass CSRF mitigation.

7.5CVSS7.5AI score0.00107EPSS

CVE•added 2020/09/18 2:15 p.m.•30 views

CVE-2020-15768

An issue was discovered in Gradle Enterprise 2017.3 - 2020.2.4 and Gradle Enterprise Build Cache Node 1.0 - 9.2. Unrestricted HTTP header reflection in Gradle Enterprise allows remote attackers to obtain authentication cookies, if they are able to discover a separate XSS vulnerability. This potenti...

7.5CVSS7.3AI score0.00813EPSS