Details
-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 3.28.1
-
Fix Version/s: 3.29.0
-
Component/s: None
-
Labels:None
Description
An XML External Entities injection vulnerability has been discovered in NXRM3. See https://support.sonatype.com/hc/en-us/articles/1500000415082-CVE-2020-29436-Nexus-Repository-Manager-3-and-Nexus-IQ-Server-XML-External-Entities-injection-2020-12-15 for more details.