VYPR
Unrated severityNVD Advisory· Published Feb 9, 2021· Updated Aug 3, 2024

CVE-2021-26719

CVE-2021-26719

Description

A directory traversal issue was discovered in Gradle gradle-enterprise-test-distribution-agent before 1.3.2, test-distribution-gradle-plugin before 1.3.2, and gradle-enterprise-maven-extension before 1.8.2. A malicious actor (with certain credentials) can perform a registration step such that crafted TAR archives lead to extraction of files into arbitrary filesystem locations.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Gradle/gradle-enterprise-test-distribution-agent, test-distribution-gradle-plugin, gradle-enterprise-maven-extensiondescription
  • Gradle/Gradlellm-fuzzy
    Range: <1.3.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.