CVE-2014-2034

CVE-2014-2034

EPSS 2.1%

Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path."

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/57142 https://support.sonatype.com/entries/42374566-CVE-2014-2034-Nexus-Security-Advisory-REST-API http://www.osvdb.org/104049 http://www.securityfocus.com/bid/65956 http://www.sonatype.org/advisories/archive/2014-03-03-Nexus