The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
CPE | Name | Operator | Version |
---|---|---|---|
nexus-public | eq | release-2.14.9-01 | |
nexus-public | eq | release-2.14.5-02 | |
nexus-public | eq | release-2.14.4-02 | |
nexus-public | eq | release-2.14.4-03 |