Critical severity9.8NVD Advisory· Published Feb 7, 2017· Updated May 13, 2026
CVE-2016-6199
CVE-2016-6199
Description
ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to execute arbitrary code via a crafted serialized object.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- discuss.gradle.org/t/a-security-issue-about-gradle-rce/17726nvdExploitTechnical DescriptionThird Party Advisory
- philwantsfish.github.io/security/java-deserialization-githubnvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.