The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Nexus Repository Manager

Sonatype Nexus Repository Manager: information disclosure via S3 Secret Key
An attacker can bypass access restrictions to data via S3 Secret Key of Sonatype Nexus Repository Manager, in order to obtain sensitive information...
CVE-2020-24622, VIGILANCE-VUL-33166
Sonatype Nexus Repository Manager: LDAP server credentials disclosure
An attacker can get the credentials of the system account used by the LDAP server of Sonatype Nexus Repository Manager...
CVE-2020-11415, VIGILANCE-VUL-32116
Sonatype Nexus Repository Manager: privilege escalation
An attacker can bypass restrictions of Sonatype Nexus Repository Manager, in order to escalate his privileges...
CVE-2020-11753, VIGILANCE-VUL-32056
Nexus Repository Manager: privilege escalation via Configuration Change
An attacker can bypass restrictions via Configuration Change of Nexus Repository Manager, in order to escalate his privileges...
CVE-2020-11444, VIGILANCE-VUL-31932
Sonatype Nexus Repository Manager: code execution via OS Command Injection
An attacker can use a vulnerability via OS Command Injection of Sonatype Nexus Repository Manager, in order to run code...
CVE-2019-15588, VIGILANCE-VUL-30775
Sonatype Nexus Repository Manager: file upload
An attacker can upload a malicious file on Sonatype Nexus Repository Manager, in order for example to upload a Trojan...
CVE-2019-16530, VIGILANCE-VUL-30669
Sonatype Nexus Repository Manager: code execution via Repository Creation
An attacker can use a vulnerability via Repository Creation of Sonatype Nexus Repository Manager, in order to run code...
CVE-2019-15893, VIGILANCE-VUL-30668
Sonatype Nexus Repository Manager: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Sonatype Nexus Repository Manager, in order to run JavaScript code in the context of the web site...
CVE-2019-14469, VIGILANCE-VUL-30138
Sonatype Nexus Repository Manager: code execution via OS Command Injection
An attacker can use a vulnerability via OS Command Injection of Sonatype Nexus Repository Manager, in order to run code...
CVE-2019-5475, VIGILANCE-VUL-30018
Sonatype Nexus Repository Manager: information disclosure via Images Download
An attacker can bypass access restrictions to data via Images Download of Sonatype Nexus Repository Manager, in order to obtain sensitive information...
CVE-2019-9629, CVE-2019-9630, VIGILANCE-VUL-29713
Our database contains other pages. You can request a free trial to read them.

Display information about Nexus Repository Manager: