Lucene search
K

412 matches found

OSV
OSV
added 2022/03/30 4:15 p.m.19 views

CVE-2022-27907

Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF...

4.3CVSS6.9AI score
Exploits0References2
Prion
Prion
added 2022/03/30 4:15 p.m.24 views

Server side request forgery (ssrf)

Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF...

4CVSS4.8AI score0.00657EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/03/30 3:51 p.m.186 views

CVE-2022-27907

CVE-2022-27907 affects Sonatype Nexus Repository Manager 3.x before 3.38.0, with an SSRF vulnerability. Connected documents describe a code issue that forces the server to send a query request, enabling SSRF. Exploitation details are not provided in the sources; no in‑the‑wild exploit data is sta...

4.3CVSS4.7AI score0.00657EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/03/30 3:51 p.m.22 views

CVE-2022-27907

Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF...

5AI score0.00657EPSS
Exploits0References2
NVD
NVD
added 2022/03/17 10:15 p.m.11 views

CVE-2021-43961

Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...

4.3CVSS0.00699EPSS
Exploits0References2
OSV
OSV
added 2022/03/17 10:15 p.m.20 views

CVE-2021-43961

Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...

4.3CVSS6.7AI score
Exploits0References2
Prion
Prion
added 2022/03/17 10:15 p.m.22 views

Design/Logic Flaw

Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...

4.3CVSS4.7AI score0.00699EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/03/17 9:13 p.m.109 views

CVE-2021-43961

CVE-2021-43961 affects Sonatype Nexus Repository Manager 3.36.0 (NXS/NXRM). The connected sources specify a HTML Injection vulnerability in this version. No exploit vectors, exploit status, or remediation details are provided in the available documents. The reports consistently describe the issue...

4.3CVSS4.6AI score0.00699EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/03/17 9:13 p.m.20 views

CVE-2021-43961

Sonatype Nexus Repository Manager 3.36.0 allows HTML Injection...

5AI score0.00699EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/03/11 12:0 a.m.3 views

Sonatype Nexus Repository Manager 跨站脚本漏洞

Sonatype Nexus Repository Manager NXRM is a repository manager from Sonatype, Inc. that is used to manage, store, and distribute software, among other things. A cross-site scripting vulnerability exists in Sonatype Nexus Repository Manager 3.x through 3.37.0. A remote attacker sending a specially...

4.3CVSS4.9AI score0.00699EPSS
Exploits0References4
CISA KEV Catalog
CISA KEV Catalog
added 2021/12/10 12:0 a.m.24 views

Sonatype Nexus Repository Manager Incorrect Access Control Vulnerability

Sonatype Nexus Repository Manager before 3.15.0 has an incorrect access control vulnerability. Exploitation allows for remote code execution...

9.8CVSS3.8AI score0.76526EPSS
In wildExploits4
BDU FSTEC
BDU FSTEC
added 2021/12/09 12:0 a.m.6 views

The vulnerability of Sonatype Nexus Repository Manager, related to improper code generation management, allows a perpetrator to execute arbitrary code.

The vulnerability of Sonatype Nexus Repository Manager is related to improper code generation management. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a specially crafted request remotely...

9CVSS8AI score0.99064EPSS
Exploits10References6Affected Software1
NVD
NVD
added 2021/11/04 6:15 p.m.20 views

CVE-2021-43293

Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery SSRF...

4.3CVSS0.00843EPSS
Exploits0References1
OSV
OSV
added 2021/11/04 6:15 p.m.12 views

CVE-2021-43293

Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery SSRF...

4.3CVSS6.7AI score
Exploits0References1
Prion
Prion
added 2021/11/04 6:15 p.m.20 views

Server side request forgery (ssrf)

Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery SSRF...

4CVSS4.5AI score0.00843EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/11/03 12:0 a.m.5 views

Sonatype Nexus Repository 代码问题漏洞

Sonatype Nexus Repository is a repository manager from Sonatype, Inc. that is used for managing, storing, and distributing software, among other things. A security vulnerability exists in Sonatype Nexus Repository 3, which stems from a lack of validation and filtering of user-submitted input on t...

4.3CVSS5.2AI score0.00843EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.33 views

Sonatype Nexus Repository Remote Code Execution Vulnerability

Sonatype Nexus Repository contains an unspecified vulnerability that allows for remote code execution...

9CVSS9AI score0.99064EPSS
In wildExploits10
NVD
NVD
added 2021/11/02 1:15 p.m.11 views

CVE-2021-42568

Sonatype Nexus Repository Manager 3.x through 3.35.0 allows attackers to access the SSL Certificates Loading function via a low-privileged account...

4.3CVSS0.00456EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/11/02 12:42 p.m.27 views

CVE-2021-42568

Sonatype Nexus Repository Manager 3.x through 3.35.0 allows attackers to access the SSL Certificates Loading function via a low-privileged account...

4.9AI score0.00456EPSS
Exploits0References2
CVE
CVE
added 2021/11/02 12:42 p.m.53 views

CVE-2021-42568

CVE-2021-42568 affects Sonatype Nexus Repository Manager 3.x up to 3.35.0. The vulnerability arises from incorrect access control that allows a low-privileged account to access the SSL Certificates Loading function, potentially exposing sensitive certificate-related data. The documented impact is...

4.3CVSS4.5AI score0.00456EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder