My Sonatype

Community

Forum Exchange Ideas Office Hours

Learn

Courses Guides Learning Paths Videos

Support

Knowledge Base Documentation

Resources

SSC Maturity Survey STEPP Assessment

Submit a request Sign in

Sign in Submit a request

My Sonatype Community Courses Guides Documentation

Sonatype Support
Welcome to the Sonatype Support Knowledge Base
Announcements

Announcements

Follow New articles New articles and comments

General announcements to the community from the Sonatype Support team.

★ New Spring Framework RCE Vulnerability (CVE-2021-22963, SONATYPE-2022-1764)
★ Scheduled Maintenance: Nexus IQ Data Services (HDS)
★ CVE-2021-44228 log4j Log4Shell Vulnerability
★ Sonatype Data Research supplies reserved CVE CVSS scores
IQ vulnerability information contains the Root Cause
codehaus.org Repositories Should Be Removed From Your Nexus Instance
Commons-collections unintended execution in deserialization
Spring-core unintended code execution in deserialization
OpenSSL Heartbleed bug and Sonatype

Terms of Service Privacy Policy
Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.