The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
CPE | Name | Operator | Version |
---|---|---|---|
nexus_repository_manager | ge | 2.0 | |
nexus_repository_manager | le | 2.14.9 |