VYPR
Unrated severityNVD Advisory· Published Jan 9, 2024· Updated Jun 17, 2025

CVE-2023-49238

CVE-2023-49238

Description

In Gradle Enterprise before 2023.1, a remote attacker may be able to gain access to a new installation (in certain installation scenarios) because of a non-unique initial system user password. Although this password must be changed upon the first login, it is possible that an attacker logs in before the legitimate administrator logs in.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Gradle/Gradle Enterprisedescription
  • Gradle/Gradlellm-fuzzy
    Range: <2023.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.