First published: Thu Nov 15 2018(Updated: )
Sonatype Nexus Repository Manager before 3.14 allows XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sonatype Nexus Repository Manager | <3.14.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-16619 is a vulnerability that allows XSS (cross-site scripting) in Sonatype Nexus Repository Manager before version 3.14.
CVE-2018-16619 has a severity rating of 6.1, which is considered medium.
CVE-2018-16619 affects Sonatype Nexus Repository Manager before version 3.14, allowing XSS attacks.
To fix CVE-2018-16619, upgrade Sonatype Nexus Repository Manager to version 3.14 or higher.
For more information about CVE-2018-16619, you can visit the Sonatype support article at https://support.sonatype.com/hc/en-us/articles/360010789893-CVE-2018-16619-Nexus-Repository-Manager-XSS-October-17-2018.