CVE-2019-16530

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-16530

Import Source

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-16530

Aliases

Published

2019-10-21T14:15:11Z

Modified

2024-09-03T02:28:13.371661Z

Severity

7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Sonatype Nexus Repository Manager 2.x before 2.14.15 and 3.x before 3.19, and IQ Server before 72, has remote code execution.

References

Affected packages

Type: GIT
Repo: https://github.com/sonatype/nexus-public
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

30e6be4ce5efb6266ef4a084898969aa54d5da69

Last affected

7b9939e71693422d3e09adc3744fa2e9b3a62a63

release-2.14.10-01

release-2.14.11-01

release-2.14.12-02

release-2.14.13-01

release-2.14.14-01

release-2.14.4-02

release-2.14.4-03

release-2.14.5-02

release-2.14.9-01

release-3.17.0-01

release-3.18.0-01

release-3.18.1-01

release-3.3.0-01

release-3.4.0-02

release-3.5.0-02