Lucene search
CVE-2019-7238
ποΈΒ 21 Mar 2019Β 17:01:29Reported byΒ mitreTypeΒ 
Β cveπΒ web.nvd.nist.govπ°οΈΒ 9Β Media mentionsπΒ 1013Β Viewsπ WEB
Sonatype Nexus Repository Manager < 3.15.0 Incorrect Access Contro
Show more
| Reporter | Title | Published | Views | Family All 19 |
|---|---|---|---|---|
 | Sonatype Nexus Repository Manager 3 Remote Code Execution (CVE-2019-7238) | 18 Nov 201900:00 | β | checkpoint_advisories |
 | CVE-2019-7238 | 21 Mar 201916:45 | β | vulnrichment |
 | Insecure Access Controls | 22 Mar 201903:17 | β | veracode |
 | Exploit for Vulnerability in Sonatype Nexus | 10 Jan 202009:19 | β | githubexploit |
| Exploit for Vulnerability in Sonatype Nexus | 21 May 201913:16 | β | githubexploit |
| Exploit for Vulnerability in Sonatype Nexus | 20 May 202114:03 | β | githubexploit |
| Exploit for Vulnerability in Sonatype Nexus | 26 Jul 201916:08 | β | githubexploit |
 | CVE-2019-7238 | 21 Mar 201917:29 | β | nvd |
 | CVE-2019-7238 | 21 Mar 201916:45 | β | cvelist |
 | CVE-2019-7238 | 21 Mar 201900:00 | β | attackerkb |
10
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| action | request body | /service/extdirect | CVE-2019-7238 in Nexus Repository Manager allows remote code execution due to insecure endpoint. | CWE-94,Β CWE-20 |
| type | request body | /service/extdirect | CVE-2019-7238 in Nexus Repository Manager allows remote code execution due to insecure endpoint. | CWE-94,Β CWE-20 |
| method | request body | /service/extdirect | CVE-2019-7238 in Nexus Repository Manager allows remote code execution due to insecure endpoint. | CWE-94,Β CWE-20 |
| data | request body | /service/extdirect | CVE-2019-7238 in Nexus Repository Manager allows remote code execution due to insecure endpoint. | CWE-94,Β CWE-20 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo21 Mar 2019 17:29Current
9.1High risk
Vulners AI Score9.1
CVSS27.5
CVSS39.8
EPSS0.97364