Vulnerabilities (CVE)

Filtered by vendor Arrow-kt Subscribe
Filtered by product Arrow
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-11404 1 Arrow-kt 1 Arrow 2024-11-21 4.3 MEDIUM 8.1 HIGH
arrow-kt Arrow before 0.9.0 resolved Gradle build artifacts (for compiling and building the published JARs) over HTTP instead of HTTPS. Any of these dependent artifacts could have been maliciously compromised by an MITM attack.