CVE-2019-12728

Published June 4th, 2019

View on NVD ↗

CVSS v3

8.1

HIGH

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.

apache/grails-core

Grails - the Web Application Framework

GitHub

2.92K