JetBrains Ktor framework (created using the Kotlin IDE template) versions before 1.1.0 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack. This issue was fixed in Kotlin plugin version 1.3.30.
References
Configurations
Configuration 1 (hide)
|
History
18 Aug 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2019-07-03 20:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-10102
Mitre link : CVE-2019-10102
CVE.ORG link : CVE-2019-10102
JSON object : View
Products Affected
jetbrains
- kotlin
- ktor
CWE
CWE-319
Cleartext Transmission of Sensitive Information