Gradle Enterprise prior to 2022.1 allows remote code execution if the installation process did not specify an initial configuration file. The configuration allows certain anonymous access to administration and an API.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gradle enterprise |