Shodan
Vulnerabilities
Vulnerable Software
Sonatype:  >> Nexus  >> 2.11.0  Security Vulnerabilities
CVE-2020-10199
Known exploited
Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection (issue 1 of 2).
CVSS Score
8.8
EPSS Score
0.942
Published
2020-04-01
CVE-2020-10203
Sonatype Nexus Repository before 3.21.2 allows XSS.
CVSS Score
4.8
EPSS Score
0.004
Published
2020-04-01
CVE-2020-10204
Sonatype Nexus Repository before 3.21.2 allows Remote Code Execution.
CVSS Score
7.2
EPSS Score
0.468
Published
2020-04-01
CVE-2019-7238
Known exploited
Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access Control.
CVSS Score
9.8
EPSS Score
0.94
Published
2019-03-21
CVE-2014-9389
Directory traversal vulnerability in Sonatype Nexus OSS and Pro before 2.11.1-01 allows remote attackers to read or write to arbitrary files via unspecified vectors.
CVSS Score
7.5
EPSS Score
0.007
Published
2015-01-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved