Security Advisories
Important advisories of known security vulnerabilities in Sonatype products.
- CVE-2018-16619 Nexus Repository Manager (XSS) - October 17, 2018
- CVE-2018-16620 Nexus Repository Manager (Missing Access Controls) - October 17, 2018
- CVE-2018-16621 Nexus Repository Manager (Java Injection) - October 17, 2018
- CVE-2018-5306 NXRM Security Advisory - Cross-Site Scripting (XSS)
- CVE-2018-5307 NXRM Security Advisory - Cross-Site Scripting (XSS)
- Protect Sonatype Server Products against Weak Diffie-Hellman Keys and Logjam
- Sonatype Nexus Security Advisories
- CVE-2016-4437 Nexus Repository Manager Remote Code Execution Vulnerability Advisory
- CVE-2014-9389 Nexus Security Advisory - Directory Traversal
- CVE-2014-2034 Nexus Security Advisory - REST API
- CVE-2014-0792 Nexus Security Advisory - xstream