Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-25019

CVE-2020-24622: S3 secret key can be exposed by admin user

    XMLWordPrintable

    Details

    • Release Note:
      Yes

      Description

      A nefarious admin user can retrieve the plain text of the S3 secret key

        Attachments

          Activity

            People

            Assignee:
            Unassigned
            Reporter:
            ataylor Andrew Taylor
            Last Updated By:
            Joseph Stephens
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                tigCommentSecurity.panel-title