CVE-2020-15767
Last modified
CVE-2020-15767 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. An issue was discovered in Gradle Enterprise before 2020.2.5. The cookie used to convey the CSRF prevention token is not annotated with the “secure” attribute, which allows an attacker with the ability to MITM plain HTTP requests to obtain it, if the user mistakenly uses a HTTP instead of HTTPS address to access the server. EPSS estimates a 0.54% chance of exploitation in the next 30 days.
Description
An issue was discovered in Gradle Enterprise before 2020.2.5. The cookie used to convey the CSRF prevention token is not annotated with the “secure” attribute, which allows an attacker with the ability to MITM plain HTTP requests to obtain it, if the user mistakenly uses a HTTP instead of HTTPS address to access the server. This cookie value could then be used to perform CSRF.
Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Gradle | Enterprise | < 2020.2.5 |
References
- https://github.com/gradle/gradle/security/advisoriesThird Party Advisory
- https://security.gradle.com/advisory/CVE-2020-15767Vendor Advisory
- https://github.com/gradle/gradle/security/advisoriesThird Party Advisory
- https://security.gradle.com/advisory/CVE-2020-15767Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-15767?
How severe is CVE-2020-15767?
How do I fix CVE-2020-15767?
Are you affected by CVE-2020-15767?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST