VYPR
Unrated severityNVD Advisory· Published Aug 14, 2019· Updated Aug 5, 2024

CVE-2019-15052

CVE-2019-15052

Description

The HTTP client in Gradle before 5.6 sends authentication credentials originally destined for the configured host. If that host returns a 30x redirect, Gradle also sends those credentials to all subsequent hosts that the request redirects to. This is similar to CVE-2018-1000007.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.