Skip to main content

Forum Ideas Office Hours Innovate

Courses Videos

Knowledge Base Documentation

SSC Maturity Survey STEPP Assessment Hosted Workshops

Sign In Submit a request Sign In

Forum Ideas Office Hours Innovate

Courses Videos

Knowledge Base Documentation

SSC Maturity Survey STEPP Assessment Hosted Workshops

Sonatype Support
Announcements

Announcements

Announcements

PostgreSQL Index Corruption - "duplicate key violation" errors
Sonatype Data Services (HDS) Regularly Scheduled Maintenance
IQ Server vulnerability information contains the Root Cause
codehaus.org Repositories Should Be Removed From Your Nexus Repository Instance
Log4Shell log4j Vulnerability CVE-2021-44228 Status
Spring Framework RCE Vulnerability CVE-2021-22963 and SONATYPE-2022-1764

See all 7 articles

Security Advisories

CVE-2024-4956 Nexus Repository 3 - Path Traversal - 2024-05-16
CVE-2024-5764 - Nexus Repository Manager 3 - Static hard-coded encryption passphrase used by default - 2024-10-17
CVE-2024-5082 Nexus Repository 2 - Remote Code Execution
CVE-2024-5083 Nexus Repository 2 - Stored XSS Vulnerability
Mitigations for CVE-2024-4956 Nexus Repository 3 Vulnerability
CVE-2024-1142 Sonatype IQ Server Path Traversal- 2024-03-06

See all 44 articles

Terms of Service Privacy Policy Cookie Preferences
Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.