Unrated severityNVD Advisory· Published Jan 9, 2024· Updated Jun 17, 2025
CVE-2023-49238
CVE-2023-49238
Description
In Gradle Enterprise before 2023.1, a remote attacker may be able to gain access to a new installation (in certain installation scenarios) because of a non-unique initial system user password. Although this password must be changed upon the first login, it is possible that an attacker logs in before the legitimate administrator logs in.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Gradle/Gradle Enterprisedescription
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.