Gradle Enterprise prior 2021.1.3 Java Object deserialization

A vulnerability, which was classified as critical, has been found in Gradle Enterprise. Affected by this issue is some unknown functionality of the component Java Object Handler. Upgrading to version 2021.1.3 eliminates this vulnerability.

Common Vulnerabilityies and Exposures

Fatek Automation WinProladder up to 3.30 Project File use after free

A vulnerability has been found in Fatek Automation WinProladder up to 3.30 (Automation Software) and classified as critical. Affected by this vulnerability is an unknown code of the component Project File Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with […]

Best Practical Request Tracker up to 4.2.16/4.4.4/5.0.1 Auth.pm timing discrepancy

A vulnerability was found in Best Practical Request Tracker up to 4.2.16/4.4.4/5.0.1 (Ticket Tracking Software). It has been declared as problematic. Affected by this vulnerability is an unknown code block in the library lib/RT/REST2/Middleware/Auth.pm. Upgrading to version 4.2.17, 4.4.5 or 5.0.2 eliminates this vulnerability. The upgrade is hosted for download […]

OTRS up to 8.0.16 Ticket privileges assignment

A vulnerability was found in OTRS up to 8.0.16 (Service Management Software). It has been rated as critical. Affected by this issue is some unknown processing of the component Ticket Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an […]