CVE-2021-42568

CVE-2021-42568

EPSS 0.5%

Sonatype Nexus Repository Manager 3.x through 3.35.0 allows attackers to access the SSL Certificates Loading function via a low-privileged account.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.sonatype.com https://support.sonatype.com/hc/en-us/articles/4408801690515-CVE-2021-42568-Nexus-Repository-Manager-3-Incorrect-Access-Control-October-27-2021