Sonatype Nexus Repository Manager is vulnerable to remote code execution. An attacker with administrative access to NXRM is able to create repositories that can grant access to read/execute system data outside the scope of NXRM.
CPE | Name | Operator | Version |
---|---|---|---|
nexus-restlet1x-plugin | le | 2.14.14-01 |