Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-24622

In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.1%
CVSS Severity
CVSS v3 Score 4.9
CVSS v2 Score 4.0
Products affected by CVE-2020-24622
  • Sonatype » Nexus » Version: 3.0.0
    cpe:2.3:a:sonatype:nexus:3.0.0
  • Sonatype » Nexus » Version: 3.15.0
    cpe:2.3:a:sonatype:nexus:3.15.0
  • Sonatype » Nexus » Version: 3.21.0
    cpe:2.3:a:sonatype:nexus:3.21.0
  • Sonatype » Nexus » Version: 3.21.1
    cpe:2.3:a:sonatype:nexus:3.21.1
  • Sonatype » Nexus » Version: 3.21.2
    cpe:2.3:a:sonatype:nexus:3.21.2
  • Sonatype » Nexus » Version: 3.22.0
    cpe:2.3:a:sonatype:nexus:3.22.0
  • Sonatype » Nexus » Version: 3.22.1
    cpe:2.3:a:sonatype:nexus:3.22.1
  • Sonatype » Nexus » Version: 3.23.0
    cpe:2.3:a:sonatype:nexus:3.23.0
  • Sonatype » Nexus » Version: 3.24.0
    cpe:2.3:a:sonatype:nexus:3.24.0
  • Sonatype » Nexus » Version: 3.25.0
    cpe:2.3:a:sonatype:nexus:3.25.0
  • Sonatype » Nexus » Version: 3.25.1
    cpe:2.3:a:sonatype:nexus:3.25.1
  • Sonatype » Nexus » Version: 3.26.0
    cpe:2.3:a:sonatype:nexus:3.26.0
  • Sonatype » Nexus » Version: 3.26.1
    cpe:2.3:a:sonatype:nexus:3.26.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved