Vulnerability Details CVE-2014-9389
Directory traversal vulnerability in Sonatype Nexus OSS and Pro before 2.11.1-01 allows remote attackers to read or write to arbitrary files via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/61134
- http://www.sonatype.org/advisories/archive/2014-12-23-Nexus/
- https://support.sonatype.com/entries/84705937-CVE-2014-9389-Nexus-Security-Advisory-Directory-Traversal
- http://secunia.com/advisories/61134
- http://www.sonatype.org/advisories/archive/2014-12-23-Nexus/
- https://support.sonatype.com/entries/84705937-CVE-2014-9389-Nexus-Security-Advisory-Directory-Traversal