Sonatype Nexus Repository before 3.21.2 allows Remote Code Execution.
References
Link | Resource |
---|---|
https://support.sonatype.com/hc/en-us/articles/360044356194 | Patch Vendor Advisory |
Configurations
History
22 Dec 2021, 20:40
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 9.0
v3 : 7.2 |
CWE | CWE-20 | |
References | (CONFIRM) https://support.sonatype.com/hc/en-us/articles/360044356194 - Patch, Vendor Advisory |
Information
Published : 2020-04-01 19:15
Updated : 2024-02-04 21:00
NVD link : CVE-2020-10204
Mitre link : CVE-2020-10204
CVE.ORG link : CVE-2020-10204
JSON object : View
Products Affected
sonatype
- nexus
CWE
CWE-20
Improper Input Validation