2 matches found
CVE-2021-34553
Sonatype Nexus Repository Manager 3.x before 3.31.0 allows a remote authenticated attacker to get a list of blob files and read the content of a blob file via a GET request without having been granted access...
CVE-2021-34553
Sonatype Nexus Repository Manager 3.x before 3.31.0 is vulnerable: remote authenticated attackers can enumerate blob files and read blob contents via GET without proper access. Affected software is Nexus Repository Manager 3.x prior to 3.31.0; remediation is to upgrade to 3.31.0 or later (per Red...