CVE-2023-44387

Summary

CVE-2023-44387 is a vulnerability affecting Gradle, a build tool used for build automation and multi-language development. The vulnerability occurs when copying or archiving symlinked files, as Gradle applies the permissions of the symlink itself instead of the permissions of the linked file. This results in files having excessive permissions since symlinks are typically world-readable and writable. While this vulnerability may not directly lead to an exploit in the build process, it could potentially create attack vectors depending on where the build artifacts are copied or un-archived. Versions 7.6.3, 8.4, and above of Gradle have addressed this issue by properly using the permissions of the file pointed at by the symlink to set permissions for the copied or archived file. The vulnerability has a base severity rating of MEDIUM with a base score of 6.5 according to NIST's National Vulnerability Database (NVD). The confidentiality impact is rated as HIGH, while exploitability requires low privileges and no user interaction.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.