Shodan
Vulnerabilities
Vulnerable Software
Sonatype:  >> Nexus  >> 3.0.0  Security Vulnerabilities
CVE-2020-24622
In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin user.
CVSS Score
4.9
EPSS Score
0.002
Published
2020-08-25
CVE-2020-11444
Sonatype Nexus Repository Manager 3.x up to and including 3.21.2 has Incorrect Access Control.
CVSS Score
8.8
EPSS Score
0.451
Published
2020-04-02
CVE-2020-10199
Known exploited
Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection (issue 1 of 2).
CVSS Score
8.8
EPSS Score
0.944
Published
2020-04-01
CVE-2020-10203
Sonatype Nexus Repository before 3.21.2 allows XSS.
CVSS Score
4.8
EPSS Score
0.004
Published
2020-04-01
CVE-2020-10204
Sonatype Nexus Repository before 3.21.2 allows Remote Code Execution.
CVSS Score
7.2
EPSS Score
0.534
Published
2020-04-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved