CRITICAL
Gradle
CVE published 2017-02-07
CVE-2016-6199
CVE-2016-6199 is a critical remote code execution issue affecting Gradle 2.12. The NVD record describes the flaw as an insecure deserialization problem in ObjectSocketWrapper.java, where a crafted serialized object can let a remote attacker execute arbitrary code. NVD assigns CWE-502 and a CVSS 3.0 score of 9.8, reflecting network attack vector, no privileges, no user interaction, and high impact to confi [truncated]