Creation of Temporary File in Directory with Insecure Permissions
Groovy extension methods were using a now superseded Java JDK method call that is potentially not secure on some operating systems in some contexts.
Groovy extension methods were using a now superseded Java JDK method call that is potentially not secure on some operating systems in some contexts.
The MethodClosure class in runtime/MethodClosure.java in this package allows remote attackers to execute arbitrary code or cause a denial of service via a crafted serialized object.