Question 1

What is CVE-2022-41575 — CVE-2022-41575?

Accepted Answer

A credential-exposure vulnerability in the support-bundle mechanism in Gradle Enterprise 2022.3 through 2022.3.3 allows remote attackers to access a subset of application data (e.g., cleartext credentials). This is fixed in 2022.3.3.

Question 2

What is the authoritative source for CVE-2022-41575?

Accepted Answer

CVE-2022-41575 (CVE-2022-41575) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	7.5 ()
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS	0.72% probability of exploitation · percentile 49.2% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-41575CVE-2022-41575

Description

Scoring