Cross-site Scripting Vulnerability in Nexus Repository 2
CVE-2024-5083

Currently unrated

Key Information:

Vendor

Sonatype

Vendor
CVE Published:
14 November 2024

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2024-5083?

A stored Cross-site Scripting vulnerability has been discovered in Sonatype Nexus Repository 2

This issue affects Nexus Repository 2 OSS/Pro versions up to and including 2.15.1.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-5083
Created by Roronoawjd

References

https://support.sonatype.com/hc/en-us/articles/3069398941...

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

.