First published: Thu Mar 21 2019(Updated: )
Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access Control.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sonatype Nexus | <3.15.0 | |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-7238 is the identifier for the Sonatype Nexus Repository Manager Incorrect Access Control Vulnerability.
CVE-2019-7238 has a severity rating of 9.8 (critical).
CVE-2019-7238 allows for remote code execution in Sonatype Nexus Repository Manager before version 3.15.0 due to an incorrect access control vulnerability.
Sonatype Nexus Repository Manager versions before 3.15.0 are affected by CVE-2019-7238.
To fix CVE-2019-7238, you should upgrade your Sonatype Nexus Repository Manager to version 3.15.0 or later.