CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
References
Link Resource
https://hackerone.com/reports/654888 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:sonatype:nexus_repository_manager:*:*:*:*:*:*:*:*

Information

Published : 2019-09-03 08:15

Updated : 2019-10-09 11:50


NVD link : CVE-2019-5475

Mitre link : CVE-2019-5475

Products Affected
No products.
CWE