CyberSec.Space Logo
Back to CVE Browser

CVE-2020-11444

HIGH
8.8
CVSS Severity Score
EPSS Score0.1950%
EPSS Percentile14.42th
PublishedApr 2, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

Sonatype Nexus Repository Manager 3.x up to and including 3.21.2 has Incorrect Access Control.

Affected Platforms (CPE)

πŸ“¦
Sonatype

Nexus

>= 3.0.0 and <= 3.21.2

References & Advisories

πŸ”— https://support.sonatype.com
πŸ”— https://support.sonatype.com/hc/en-us/articles/360046133553
πŸ”— https://support.sonatype.com
πŸ”— https://support.sonatype.com/hc/en-us/articles/360046133553

Related Vulnerabilities

CVE-2008-096010.0

SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) e...

CVE-2019-72389.8

Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access Control.

CVE-2019-18049.8

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Sof...

CVE-2019-96299.8

Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults (fixed credentials).