Homepage
About Snyk

org.codehaus.groovy:groovy@3.0.0 vulnerabilities

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.codehaus.groovy:groovy package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Information Disclosure

org.codehaus.groovy:groovy is a language for the JVM

Affected versions of this package are vulnerable to Information Disclosure. Groovy may create temporary directories within the OS temporary directory which is shared between all users on affected systems. This vulnerability only impacts Unix-like systems, and very old versions of Mac OSX and Windows.

How to fix Information Disclosure?

Upgrade org.codehaus.groovy:groovy to version 2.4.21, 2.5.14, 3.0.7, 4.0.0-alpha-2 or higher.

[,2.4.21) [2.5.0,2.5.14) [3.0.0,3.0.7) [4.0.0-alpha-1,4.0.0-alpha-2)
Go back to all versions of this package