First published: Wed Mar 30 2022(Updated: )
Sonatype Nexus Repository Manager 3.x before 3.38.0 allows SSRF.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sonatype Nexus Repository Manager | >=3.0.0<3.38.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for Sonatype Nexus Repository Manager is CVE-2022-27907.
The severity of CVE-2022-27907 is medium with a severity value of 4.3.
The vulnerability in Sonatype Nexus Repository Manager is SSRF (Server-Side Request Forgery).
Sonatype Nexus Repository Manager 3.x before 3.38.0 is affected by CVE-2022-27907.
To fix CVE-2022-27907, you should update Sonatype Nexus Repository Manager to version 3.38.0 or later.