CVE-2018-16621

Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection.
Configurations

Configuration 1

cpe:2.3:a:sonatype:nexus_repository_manager:*:*:*:*:*:*:*:*

Information

Published : 2018-11-15 08:29

Updated : 2021-03-04 09:06


NVD link : CVE-2018-16621

Mitre link : CVE-2018-16621

Products Affected
No products.
CWE
CWE-917

Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')