Multiple vulnerabilities in Gradle

Published: 2023-12-07

Risk	Medium
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2023-44387 CVE-2023-42445
CWE-ID	CWE-732 CWE-611
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	gradle Other software / Other software solutions
Vendor	Gradle

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Incorrect permission assignment for critical resource

EUVDB-ID: #VU83979

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-44387

CWE-ID: CWE-732 - Incorrect Permission Assignment for Critical Resource

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to the way Gradle sets permissions when copying or archiving symlinked files. A local user can set permissions on the symlinks that will be applied to the linked files.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

gradle: 7.0.0 - 8.3.0

CPE2.3

External links

https://github.com/gradle/gradle/security/advisories/GHSA-43r3-pqhv-f7h9
https://github.com/gradle/gradle/releases/tag/v7.6.3
https://github.com/gradle/gradle/releases/tag/v8.4.0
https://github.com/gradle/gradle/commit/3b406191e24d69e7e42dc3f3b5cc50625aa930b7
https://security.netapp.com/advisory/ntap-20231110-0006/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) XML External Entity injection

EUVDB-ID: #VU83978

Risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-42445

CWE-ID: CWE-611 - Improper Restriction of XML External Entity Reference ('XXE')

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to insufficient validation of user-supplied XML input. A remote attacker can pass a specially crafted XML code to the affected application and view contents of arbitrary files on the system or initiate requests to external systems.

Successful exploitation of the vulnerability may allow an attacker to view contents of arbitrary file on the server or perform network scanning of internal and external infrastructure.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

gradle: 7.0.0 - 8.3.0

CPE2.3

External links

https://github.com/gradle/gradle/releases/tag/v7.6.3
https://github.com/gradle/gradle/security/advisories/GHSA-mrff-q8qj-xvg8
https://github.com/gradle/gradle/releases/tag/v8.4.0
https://security.netapp.com/advisory/ntap-20231110-0006/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.