CVE-2014-9389

Directory traversal vulnerability in Sonatype Nexus OSS and Pro before 2.11.1-01 allows remote attackers to read or write to arbitrary files via unspecified vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sonatype:nexus:*:*:*:*:oss:*:*:*
cpe:2.3:a:sonatype:nexus:*:*:*:*:pro:*:*:*

History

No history.

Information

Published : 2015-01-05 20:59

Updated : 2024-02-04 18:35


NVD link : CVE-2014-9389

Mitre link : CVE-2014-9389

CVE.ORG link : CVE-2014-9389


JSON object : View

Products Affected

sonatype

  • nexus
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')