Security Advisories

Important advisories of known security vulnerabilities in Sonatype products.

• CVE-2018-5306 NXRM Security Advisory - Cross-Site Scripting (XSS)
• CVE-2018-5307 NXRM Security Advisory - Cross-Site Scripting (XSS)
• Protect Sonatype Server Products against Weak Diffie-Hellman Keys and Logjam
• Sonatype Nexus Security Advisories
• Nexus Repository Manager Remote Code Execution Vulnerability Advisory
• CVE-2014-9389 Nexus Security Advisory - Directory Traversal
• CVE-2014-2034 Nexus Security Advisory - REST API
• CVE-2014-0792 Nexus Security Advisory - xstream