Affecting org.apache.ant:ant artifact, versions [1.1,1.9.15) || [1.10.0,1.10.8)Report new vulnerabilities
org.apache.ant:ant is a software tool for automating software build processes which originated from the Apache Tomcat project in early 2000.
Affected versions of this package are vulnerable to Insecure Default. It uses the default temporary directory identified by the Java system property
java.io.tmpdir for several tasks and may thus leak sensitive information. The
replaceregexp tasks also copy files from the temporary directory back into the build tree allowing an attacker to inject modified source files into the build process.
org.apache.ant:ant to version 1.9.15, 1.10.8 or higher.