CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37152

Multiple XSS issues exist in Sonatype Nexus Repository Manager 3 before 3.33.0. An authenticated attacker with the ability to add HTML files to a repository could redirect users to Nexus Repository Manager’s pages with code modifications.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.069

EPSS Ranking 90.9%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2021-37152

Sonatype » Nexus Repository Manager » Version: 3.0.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.0.0
Sonatype » Nexus Repository Manager » Version: 3.0.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.0.1
Sonatype » Nexus Repository Manager » Version: 3.0.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.0.2
Sonatype » Nexus Repository Manager » Version: 3.1.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.1.0
Sonatype » Nexus Repository Manager » Version: 3.10.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.10.0
Sonatype » Nexus Repository Manager » Version: 3.10.0-04

cpe:2.3:a:sonatype:nexus_repository_manager:3.10.0-04
Sonatype » Nexus Repository Manager » Version: 3.11.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.11.0
Sonatype » Nexus Repository Manager » Version: 3.11.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.11.0-01
Sonatype » Nexus Repository Manager » Version: 3.12.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.12.0
Sonatype » Nexus Repository Manager » Version: 3.12.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.12.0-01
Sonatype » Nexus Repository Manager » Version: 3.12.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.12.1
Sonatype » Nexus Repository Manager » Version: 3.12.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.12.1-01
Sonatype » Nexus Repository Manager » Version: 3.13.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.13.0
Sonatype » Nexus Repository Manager » Version: 3.13.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.13.0-01
Sonatype » Nexus Repository Manager » Version: 3.14.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.14.0
Sonatype » Nexus Repository Manager » Version: 3.14.0-04

cpe:2.3:a:sonatype:nexus_repository_manager:3.14.0-04
Sonatype » Nexus Repository Manager » Version: 3.15.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.15.0
Sonatype » Nexus Repository Manager » Version: 3.15.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.15.0-01
Sonatype » Nexus Repository Manager » Version: 3.15.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.15.1
Sonatype » Nexus Repository Manager » Version: 3.15.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.15.1-01
Sonatype » Nexus Repository Manager » Version: 3.15.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.15.2
Sonatype » Nexus Repository Manager » Version: 3.15.2-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.15.2-01
Sonatype » Nexus Repository Manager » Version: 3.16.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.16.0
Sonatype » Nexus Repository Manager » Version: 3.16.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.16.0-01
Sonatype » Nexus Repository Manager » Version: 3.16.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.16.1
Sonatype » Nexus Repository Manager » Version: 3.16.1-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.16.1-02
Sonatype » Nexus Repository Manager » Version: 3.16.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.16.2
Sonatype » Nexus Repository Manager » Version: 3.16.2-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.16.2-01
Sonatype » Nexus Repository Manager » Version: 3.17.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.17.0
Sonatype » Nexus Repository Manager » Version: 3.17.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.17.0-01
Sonatype » Nexus Repository Manager » Version: 3.18.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.18.0
Sonatype » Nexus Repository Manager » Version: 3.18.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.18.0-01
Sonatype » Nexus Repository Manager » Version: 3.18.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.18.1
Sonatype » Nexus Repository Manager » Version: 3.18.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.18.1-01
Sonatype » Nexus Repository Manager » Version: 3.19.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.19.0
Sonatype » Nexus Repository Manager » Version: 3.19.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.19.0-01
Sonatype » Nexus Repository Manager » Version: 3.19.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.19.1
Sonatype » Nexus Repository Manager » Version: 3.19.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.19.1-01
Sonatype » Nexus Repository Manager » Version: 3.2.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.2.0
Sonatype » Nexus Repository Manager » Version: 3.2.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.2.1
Sonatype » Nexus Repository Manager » Version: 3.20.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.20.0
Sonatype » Nexus Repository Manager » Version: 3.20.0-04

cpe:2.3:a:sonatype:nexus_repository_manager:3.20.0-04
Sonatype » Nexus Repository Manager » Version: 3.20.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.20.1
Sonatype » Nexus Repository Manager » Version: 3.21.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.21.0
Sonatype » Nexus Repository Manager » Version: 3.21.0-05

cpe:2.3:a:sonatype:nexus_repository_manager:3.21.0-05
Sonatype » Nexus Repository Manager » Version: 3.21.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.21.1
Sonatype » Nexus Repository Manager » Version: 3.21.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.21.2
Sonatype » Nexus Repository Manager » Version: 3.21.2-03

cpe:2.3:a:sonatype:nexus_repository_manager:3.21.2-03
Sonatype » Nexus Repository Manager » Version: 3.22.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.22.0
Sonatype » Nexus Repository Manager » Version: 3.22.0-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.22.0-02
Sonatype » Nexus Repository Manager » Version: 3.22.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.22.1
Sonatype » Nexus Repository Manager » Version: 3.22.1-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.22.1-02
Sonatype » Nexus Repository Manager » Version: 3.23.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.23.0
Sonatype » Nexus Repository Manager » Version: 3.23.0-03

cpe:2.3:a:sonatype:nexus_repository_manager:3.23.0-03
Sonatype » Nexus Repository Manager » Version: 3.24.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.24.0
Sonatype » Nexus Repository Manager » Version: 3.24.0-0

cpe:2.3:a:sonatype:nexus_repository_manager:3.24.0-0
Sonatype » Nexus Repository Manager » Version: 3.25.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.25.0
Sonatype » Nexus Repository Manager » Version: 3.25.0-03

cpe:2.3:a:sonatype:nexus_repository_manager:3.25.0-03
Sonatype » Nexus Repository Manager » Version: 3.25.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.25.1
Sonatype » Nexus Repository Manager » Version: 3.25.1-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.25.1-02
Sonatype » Nexus Repository Manager » Version: 3.26.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.26.0
Sonatype » Nexus Repository Manager » Version: 3.26.0-04

cpe:2.3:a:sonatype:nexus_repository_manager:3.26.0-04
Sonatype » Nexus Repository Manager » Version: 3.26.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.26.1
Sonatype » Nexus Repository Manager » Version: 3.27.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.27.0
Sonatype » Nexus Repository Manager » Version: 3.27.0-03

cpe:2.3:a:sonatype:nexus_repository_manager:3.27.0-03
Sonatype » Nexus Repository Manager » Version: 3.28.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.28.0
Sonatype » Nexus Repository Manager » Version: 3.28.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.28.0-01
Sonatype » Nexus Repository Manager » Version: 3.28.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.28.1
Sonatype » Nexus Repository Manager » Version: 3.28.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.28.1-01
Sonatype » Nexus Repository Manager » Version: 3.29.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.29.0
Sonatype » Nexus Repository Manager » Version: 3.29.0-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.29.0-02
Sonatype » Nexus Repository Manager » Version: 3.29.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.29.1
Sonatype » Nexus Repository Manager » Version: 3.29.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.29.1-01
Sonatype » Nexus Repository Manager » Version: 3.29.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.29.2
Sonatype » Nexus Repository Manager » Version: 3.29.2-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.29.2-02
Sonatype » Nexus Repository Manager » Version: 3.3.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.3.0
Sonatype » Nexus Repository Manager » Version: 3.3.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.3.0-01
Sonatype » Nexus Repository Manager » Version: 3.3.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.3.1
Sonatype » Nexus Repository Manager » Version: 3.3.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.3.1-01
Sonatype » Nexus Repository Manager » Version: 3.3.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.3.2
Sonatype » Nexus Repository Manager » Version: 3.30.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.30.0
Sonatype » Nexus Repository Manager » Version: 3.30.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.30.0-01
Sonatype » Nexus Repository Manager » Version: 3.30.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.30.1
Sonatype » Nexus Repository Manager » Version: 3.30.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.30.1-01
Sonatype » Nexus Repository Manager » Version: 3.31.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.31.0-01
Sonatype » Nexus Repository Manager » Version: 3.31.1-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.31.1-01
Sonatype » Nexus Repository Manager » Version: 3.32.0-03

cpe:2.3:a:sonatype:nexus_repository_manager:3.32.0-03
Sonatype » Nexus Repository Manager » Version: 3.4.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.4.0
Sonatype » Nexus Repository Manager » Version: 3.4.0-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.4.0-02
Sonatype » Nexus Repository Manager » Version: 3.5.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.5.0
Sonatype » Nexus Repository Manager » Version: 3.5.0-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.5.0-02
Sonatype » Nexus Repository Manager » Version: 3.5.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.5.1
Sonatype » Nexus Repository Manager » Version: 3.5.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.5.2
Sonatype » Nexus Repository Manager » Version: 3.5.2-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.5.2-01
Sonatype » Nexus Repository Manager » Version: 3.6.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.6.0
Sonatype » Nexus Repository Manager » Version: 3.6.0-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.6.0-02
Sonatype » Nexus Repository Manager » Version: 3.6.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.6.1
Sonatype » Nexus Repository Manager » Version: 3.6.1-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.6.1-02
Sonatype » Nexus Repository Manager » Version: 3.6.2

cpe:2.3:a:sonatype:nexus_repository_manager:3.6.2
Sonatype » Nexus Repository Manager » Version: 3.6.2-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.6.2-01
Sonatype » Nexus Repository Manager » Version: 3.7.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.7.0
Sonatype » Nexus Repository Manager » Version: 3.7.0-04

cpe:2.3:a:sonatype:nexus_repository_manager:3.7.0-04
Sonatype » Nexus Repository Manager » Version: 3.7.1

cpe:2.3:a:sonatype:nexus_repository_manager:3.7.1
Sonatype » Nexus Repository Manager » Version: 3.7.1-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.7.1-02
Sonatype » Nexus Repository Manager » Version: 3.8.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.8.0
Sonatype » Nexus Repository Manager » Version: 3.8.0-02

cpe:2.3:a:sonatype:nexus_repository_manager:3.8.0-02
Sonatype » Nexus Repository Manager » Version: 3.9.0

cpe:2.3:a:sonatype:nexus_repository_manager:3.9.0
Sonatype » Nexus Repository Manager » Version: 3.9.0-01

cpe:2.3:a:sonatype:nexus_repository_manager:3.9.0-01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37152

Products

Pricing

Contact Us