Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.grails:grails-core(Maven) | 0 | 3.3.10 | N/A |
CVSS Metrics
