Nexus Repository Manager Java EL Injection RCE

2020-04-15T20:49:33
ID MSF:EXPLOIT/LINUX/HTTP/NEXUS_REPO_MANAGER_EL_INJECTION
Type metasploit
Reporter Rapid7
Modified 2020-08-14T18:40:23

Description

This module exploits a Java Expression Language (EL) injection in Nexus Repository Manager versions up to and including 3.21.1 to execute code as the Nexus user. This is a post-authentication vulnerability, so credentials are required to exploit the bug. Any user regardless of privilege level may be used. Tested against 3.21.1-01.