Gradle Enterprise can improve developer productivity by accelerating builds, improving build reliability, and speeding up build debugging. An attacker could exploit this vulnerability to obtain potentially sensitive build/configuration details via a specially crafted HTTP request with the X-Gradle-Enterprise-Ajax-Request header.
CPE | Name | Operator | Version |
---|---|---|---|
gradle gradle enterprise | lt | 2021.1.3 |