Insecure Artifact Resolution in JetBrains Ktor Framework

Insecure Artifact Resolution in JetBrains Ktor Framework

CVE-2019-10102 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

JetBrains Ktor framework (created using the Kotlin IDE template) versions before 1.1.0 were resolving artifacts using an http connection during the build process, potentially allowing an MITM attack. This issue was fixed in Kotlin plugin version 1.3.30.

Learn more about our Web Application Penetration Testing UK.