Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-29407

Server Side Request Forgery

    XMLWordPrintable

Details

    • Story
    • Resolution: Fixed
    • Major
    • 3.36.0
    • None
    • Transport

    Description

      An SSRF (Server Side Request Forgery) vulnerability was identified in Sonatype Nexus Repository before 3.36.0, potentially leading to network enumeration or facilitating other attacks.

      More details in KB article.

      Attachments

        Activity

          People

            Unassigned Unassigned
            dsawa Dawid Sawa
            Dawid Sawa Dawid Sawa
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              tigCommentSecurity.panel-title