CVE-2026-7494
CVE-2026-7494 describes a Server-Side Request Forgery (SSRF) in Nexus Repository 3, exploitable via the SSL Certificate Retrieval endpoint. A user with the nexus:ssl-truststore:read permission can trigger outbound connections from the server to internal or restricted hosts. Affected versions are ...