Published: 02/03/2023 Updated: 13/04/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

DescriptionA flaw was found in Gradle when verifying long IDs of 64 bits for PGP keys in the trusted key or PGP element. This flaw allows an malicious user to exploit this issue and collision the dependency verification.A flaw was found in Gradle when verifying long IDs of 64 bits for PGP keys in the trusted key or PGP element. This flaw allows an malicious user to exploit this issue and collision the dependency verification.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gradle gradle

Synopsis Moderate: Red Hat build of Quarkus 2138 release and security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat build of Quarkus Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a d ...

DescriptionA flaw was found in Gradle when verifying long IDs of 64 bits for PGP keys in the trusted key or PGP element This flaw allows an attacker to exploit this issue and collision the dependency verificationA flaw was found in Gradle when verifying long IDs of 64 bits for PGP keys in the trusted key or PGP element This flaw allows an ...

CWE-829 https://github.com/gradle/gradle/commit/bf3cc0f2b463033037e67aaacda31291643ea1a9 https://github.com/gradle/gradle/security/advisories/GHSA-c724-3xg7-g3hf https://security.netapp.com/advisory/ntap-20230413-0002/https://access.redhat.com/errata/RHSA-2023:3809 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2023-26053

CVE-2023-26053

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect