sonatype News Articles
Recent news articles refferecing the vendors vulnerabilities.
Ethical Hacking - CVE-2024-4956: Path Traversal Vulnerability in Sonatype Nexus Repository 3
CVE-2024-4956 is a critical path traversal vulnerability identified in Sonatype Nexus Repository 3. This vulnerability allows an unauthenticated attacker to exploit the application and potentially gain access to sensitive system files.
VicariusCVE-2024-4956Path Traversal in Sonatype Nexus Repository 3 (CVE-2024-4956) - vsociety
Path Traversal in Sonatype Nexus Repository 3 (CVE-2024-4956)SummaryCVE-2024-4956 is a path traversal vulnerability in Sonatype Nexus Repository 3, an artifact repository manager. Exploitation allows...
Kudelski Security ResearchCVE-2024-4956CVE-2024-4956 – Unauthenticated Path Traversal in Nexus Repository Manager 3
Nexus Repository Manager serves as a hub for managing, storing, and disseminating development artifacts. A critical security flaw, identified as a path traversal vulnerability, has been detected in Nexus Repository Manager version 3, affecting releases before 3.68.1. This vulnerability enables unaut...
VicariusCVE-2024-4956CVE-2024-4956 - vsociety
Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files. Fixed in version 3.68.1.
Pentest-Tools.comCVE-2024-4956Sonatype Nexus Repository Manager 3 - Local File Inclusion (CVE-2024-4956)
Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files.
【复现】Nexus Repository3 任意文件下载漏洞的风险通告
-赛博昆仑漏洞安全通告- Nexus Repository3 任意文件下载漏洞的风险通告 漏洞描述 近日,赛博昆仑CERT监测到 Sonatype Nexus Repository3 任意文件下载漏洞(CVE-2024-4956)的漏洞情报。Sonateype Nexus Repository...