CVE-2019-9629
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2019-9629
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-9629.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2019-9629
- Published
- 2019-07-08T19:15:11Z
- Modified
- 2025-10-21T05:14:26.668496Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults (fixed credentials).
- References
Affected packages
Git / github.com/sonatype/nexus-public
Affected ranges
- Type
- GIT
- Repo
- https://github.com/sonatype/nexus-public
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-quartz/src/main/java/org/sonatype/nexus/quartz/internal/task/QuartzTaskInfo.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-02e50b85",
"digest": {
"line_hashes": [
"269492277982339953938343062153932499967",
"20525480639861920804323056650460866744",
"254225593162408333318763150717130613040",
"238040523359886149575543872075999667674"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "setup",
"file": "components/nexus-security/src/test/java/org/sonatype/nexus/security/authc/AntiCsrfHelperTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-0622b7d8",
"digest": {
"function_hash": "287267974784957259293623877762962216105",
"length": 58.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-core/src/main/java/org/sonatype/nexus/internal/selector/SelectorManagerImpl.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-09973284",
"digest": {
"line_hashes": [
"181892079863385110703662474557794668904",
"244810299240653141405320851119389960107",
"65392424918015663225696889621324573832",
"21172613433488404330686744384672627096",
"255430996114569905692152286001944779892",
"77849900849166177163058442302422790128"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "readFrom",
"file": "components/nexus-blobstore/src/main/java/org/sonatype/nexus/blobstore/BlobAttributesSupport.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-0bed78a8",
"digest": {
"function_hash": "75681199426954511966493122674283901951",
"length": 663.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-security/src/main/java/org/sonatype/nexus/security/internal/rest/UserApiResourceDoc.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-0cc046ab",
"digest": {
"line_hashes": [
"82755494227277370246513622630886949065",
"28004043135786823251455330452812610874",
"103258480209778389490002779011766578017",
"312884401993947784048896872366500099154",
"85685584225350595549855989958346912425",
"293449157190977219501037701565341704044",
"233363378660691073633579273889844069823",
"61524513618062015313254169422857348358",
"267255651039086195554710247225312482123",
"255013030981380244369275400506710878911",
"45132718454517137482507011824418464437",
"243618150590738418465971115381904348541",
"158756420358297128928956211291990028090",
"95615521809280145690879486325657252808",
"245722626067901986335630118873085117671",
"252723545018596786792972068536036798959",
"314438247096025444097420304889175493889",
"167992280209536179188400129120485521384",
"300261269123086001097647790625961748933",
"141616235587252722981770604366736429900",
"276114617678512407305055643870734473167",
"265368832440190657452403972110198988459",
"18939396887192286818232707858112836710"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "testRequireValidToken_Disabled",
"file": "components/nexus-security/src/test/java/org/sonatype/nexus/security/authc/AntiCsrfHelperTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-10c6fbab",
"digest": {
"function_hash": "171153755785693730477471257009737047161",
"length": 151.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "disabledByDefault",
"file": "plugins/nexus-repository-golang/src/test/java/org/sonatype/nexus/repository/golang/internal/hosted/GolangHostedRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-1787ba6b",
"digest": {
"function_hash": "130979115666128871911452431610173748609",
"length": 96.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "AntiCsrfHelper",
"file": "components/nexus-security/src/main/java/org/sonatype/nexus/security/authc/AntiCsrfHelper.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-1f48b5c4",
"digest": {
"function_hash": "181255953784601606898020427689981913846",
"length": 117.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "S3BlobStoreDescriptor",
"file": "plugins/nexus-blobstore-s3/src/main/java/org/sonatype/nexus/blobstore/s3/internal/S3BlobStoreDescriptor.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-23b9e005",
"digest": {
"function_hash": "73651834422476740372582484051549778585",
"length": 1973.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "testIsAccessAllowed_Disabled",
"file": "components/nexus-security/src/test/java/org/sonatype/nexus/security/authc/AntiCsrfHelperTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-264b86fa",
"digest": {
"function_hash": "65665498535978464501307122783736767880",
"length": 172.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-blobstore/src/main/java/org/sonatype/nexus/blobstore/BlobStoreDescriptor.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-2df22f3c",
"digest": {
"line_hashes": [
"337404437193735307437287560450680485862",
"110387893622180892365318138731255882534",
"150900450629767299019091981499201612553",
"281572543731561674725901811952739918265",
"16564224696230701065037092084569814425",
"61817151679470500675062348371451846007",
"236177122431626270467607373046520306947",
"150440079692648842308591790502958858498"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-blobstore-s3/src/main/java/org/sonatype/nexus/blobstore/s3/internal/S3BlobStoreDescriptor.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-37e7eec2",
"digest": {
"line_hashes": [
"291141024114104843494119635461418267423",
"262479482887962447966773138659749121506",
"28051473505888753938125091850448485494",
"294953685993524830815540278058296824835",
"188232244058603025498393795416559952910",
"329914948233577040159781229123627853748",
"219875017670734013988557723295630273586",
"236842910294159964695782171591020542552",
"103694513469365734574135070277305701653",
"300306312819161164272963900054076524691",
"256999775855091002054386504803453314936",
"233938956760448237565407017056733692990",
"189682381521835483626144255541499691121",
"202624767268147389150304009140004612512",
"211096647771257354125860205054583326173",
"140150027817105542795597179164036917598",
"265391295791419344453650975616630470701",
"192891174059560288175917194896527095607",
"121818959561059992203931817715612684409",
"44060393124107061316672574690562532399",
"164043594242983476244448920666902724300",
"256998098114605032337571472001775899700",
"213295877740416070517249112542864270786",
"53835717532198663237477322034968702932",
"157635938448803493236222352417319472658",
"30000394172091747092060569526206985563",
"153272313170616044598529285690855093829",
"234260240475632515837310584191684958830",
"154874353331425753236321598719967437087",
"259651475440484122307287016691479259248",
"9941273151035047371309396190370480809",
"28976572698677478228154244307900916974",
"50872066030172504728898965133070350168",
"151821539207229191815104330764603196371",
"261786164652249858534490657438524797320",
"60782654940552806062956333202506047568",
"252925095042971664233664196153271795309",
"255010939554193752903808829214627411619",
"207709007136315398573315606713870676496",
"193767299964771102922437224499753602131",
"113985580005297823162773746784274065541",
"245395464036944336724469916841182941780",
"238197596763289777847828603439955919344",
"158406813441351767964127635473806497062",
"199606277518844656456367594172911289453",
"285754755468730015079432830941957158771",
"56732563809180377515619548875279392885",
"193188202651868534109941364220684922967",
"128578395901453904527821599613058503945",
"192878548078579900447083230949263864168",
"113559900627683028681969284088850906327",
"115046894744460800683076106468403273825",
"66566198765235386640421804103055537971",
"236900820278443701212885077992182470375",
"80740443507369012573830445559471347215",
"247918670233516404093297600046744438372",
"222159609507220510035304803831207767604",
"184040848424915353899756472514613706215",
"295851574048025291110252844794617670186",
"108600942041088521995622887972374336489",
"204701472810455561128877070287607407833",
"160001259706638598097298243064864256388",
"127092704932936694858620802973865107917",
"8559789343401458310896132392862010847",
"262433904558751231436584649352307730561",
"248753573053482621892416769513886472598",
"64307525880447901144066127689838035621",
"286265669707544548922963448962812995295",
"199132231529000532565508225192927177391",
"299328060795439933565732373440136873823",
"28671670229927563940947516581280318477",
"92149744188412033774662068974248427721",
"35569177732305934996151191803457173508",
"259858781046029847175899954845021684928",
"288715574247589040721514626087917847972",
"274170359195600213104004426411667888630",
"136711841513980644510229712636401275711",
"339547314326303484995293877246718557772",
"290331081718676936166927246985201557348",
"190611454542442920959614463692554330334",
"108553134841963459602257272904844062805",
"95447921552102417736645944096625189357",
"204013283864067528402446037586083606920",
"124427949041905393677426096891728077360",
"150395663898501773958618933778616581909",
"292049019594885810534616411602926921611",
"268969051771293377590657755663578888872",
"49233780499061501681309678853795921565",
"272928247244905410845439529794086643989",
"32458124229544787895286908498309798529",
"122473699563752276296277759838062755041",
"70779751283388511137782331158126648892",
"208214865729919134630167016985898703393",
"17277618212025031547011452446713761474",
"82018080749019554731286998359535500414",
"70539496697990968157566684369988197579",
"201496224931021315658031721042507927344",
"160633856342695849525468421358328021326",
"159017008249378643352288879388924292266",
"72685704989845666008388698632521176687",
"173596311279678573819404051187400436492",
"16643723003110253965536362205578824324",
"169387748393508345135404323079277215185",
"255417273749218543529691238392680942111",
"112049024622451414658807535254719162910",
"225086008768238921225107908922888703167",
"43362522798849359944671006999274726003",
"338865775825129487000270949687755550583",
"181901157724187009423757734255830794616",
"22821018350304338220767347947260537021",
"161298527793802604071443098951072134439",
"295450564677888317789908244438415326095",
"266631437347176186490104744422817314192",
"239226095199684078162685457111041546308",
"329378440096333675809970466575852955766",
"176626178916720078844652439686146354818",
"292390877050675907259900973254642406975",
"72646771742903546409219121318688857749",
"255813495261439712447354010296325646527",
"236421875357208058622521387655320721350",
"77564817341271750253831049751890377434",
"245069189911497067589658290507265099191",
"170035421233952529792334618327578533968",
"24074432412114807005052688879144982338",
"65438782101721011979866750216403679197",
"17483107279069956030882091475839589707",
"17841297477806116579453138872245950370",
"228702061209358425507479628885394409104",
"88859591395914805439171953220821453112",
"217488429180782375517618220287439700701",
"101180987349364947782411382004630726206",
"291774095650760664685252220093351506915",
"205518025873625578349442694941160295797",
"47652795515260342900760334770341429812",
"149218188591659646525726517845183432446",
"155503226417078634155304190150255513992",
"287968579599450914920658218822078787425",
"12110953397167604013192991041786171178",
"284879845668973731634404676793103804073",
"78088814492200971812032890848483842761",
"168670330833202888026876574797689518665",
"313191746535124723286138622594247476206",
"19259491605903075383736689759795717595",
"21450634490994838549999939139811762675",
"282439405891997852477702062350051022741",
"230314317817318401675127060143918520495",
"218315120647658828168112553584092372031",
"267670487928220717167716537840058219224",
"85185353135707120393079556053017112503",
"158866510110248610557569437655612877185",
"76691788672075503726328409367910807529",
"261227391269219546188831314217322705205",
"272766750670208082282025140545747262056",
"305827429080900151725321333326729529342"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "setup",
"file": "components/nexus-base/src/test/java/org/sonatype/nexus/internal/log/LastShutdownTimeServiceImplTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-3cd83885",
"digest": {
"function_hash": "288626475862686197765788974649656378878",
"length": 227.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "tearDown",
"file": "plugins/nexus-repository-apt/src/test/java/org/sonatype/nexus/repository/apt/internal/AptRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-422ee51e",
"digest": {
"function_hash": "32430450691710686588280980409924829593",
"length": 81.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-security/src/main/java/org/sonatype/nexus/security/internal/rest/SecurityApiResource.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-4db5e4a4",
"digest": {
"line_hashes": [
"203768726747836504806793745626128375957",
"267459244722497170205101311084015825690",
"281667731089378285361113900644903772318",
"55153702726202550705670758091484403835",
"158286965168616030172635597183535819393",
"53009836129239474978425040460748617745",
"212359264530221046473495053379392348394",
"58274881797095358622409835104765726157"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "missingNexusYieldsEmpty",
"file": "components/nexus-base/src/test/java/org/sonatype/nexus/internal/log/LastShutdownTimeServiceImplTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-4ea65acd",
"digest": {
"function_hash": "62248326075402837970185249179075510366",
"length": 223.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-security/src/test/java/org/sonatype/nexus/security/authc/AntiCsrfHelperTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-4f8333bf",
"digest": {
"line_hashes": [
"214826111149342603168616424776622218977",
"102422661191545469512024191736431340184",
"244830464298500282494045232137157758525",
"103567347009716434057094056459213959474",
"56923917474468591280139490333023842816",
"114985714193147756074786640611775632249",
"102794739828920660527510069444211395048",
"196435135664782536069300445570369100919",
"81754313333923110953102133252101450223",
"99086539652191948761176092057168218013",
"43827827252155614928155703087100646078",
"159943990326308232158469220731731413240",
"149243822486489643788183618028154893976",
"155284775644762037003373938372666606446",
"30535613145571043987706623474192208997",
"186475536528414694686109629242499844872"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "disabledByDefault",
"file": "plugins/nexus-repository-apt/src/test/java/org/sonatype/nexus/repository/apt/internal/AptRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-5281332e",
"digest": {
"function_hash": "130979115666128871911452431610173748609",
"length": 96.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "isFeatureEnabled",
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/AptRecipeSupport.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-5408a48a",
"digest": {
"function_hash": "318756210254827226643017156891975325563",
"length": 87.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "get",
"file": "plugins/nexus-coreui-plugin/src/main/java/org/sonatype/nexus/coreui/internal/log/LogResource.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-54614977",
"digest": {
"function_hash": "279936967544921616838505004386183515804",
"length": 526.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-repository/src/main/java/org/sonatype/nexus/repository/rest/internal/resources/RoutingRulesApiResource.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-57873617",
"digest": {
"line_hashes": [
"48005303842154182751642903809514675484",
"48361821485463658973368879003412382301",
"143722655484005512717203189488944017438",
"39138122610969466652950767961594136742",
"67272952188793931851777913641081350640",
"5468288950499578919055935851570450269",
"149066317447750971606804680203105193376",
"222809921955811599490158006267376140023",
"100976788193414799463741314485189158984",
"324340572107095332170893864486452804778",
"280283623548331626915832562533834312887",
"204066331330546696897680041209038466842",
"278428354582065220895446879832173049775",
"55315993007120280177036951711681949509",
"219389339905294650111390932372821845688",
"234286149600233071960396973538245069009",
"310725349031721271897055755169052455789",
"99245119737975976114760456729184821575",
"5408106632717800654076846307612962647",
"336269572358883977782082702845769932321",
"170226313456116961076975761793880280349",
"20538568340652482040368995046624286030",
"339585179990049669251185295324589136683"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-coreui-plugin/src/main/java/org/sonatype/nexus/coreui/internal/log/LogResource.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-5c364ce3",
"digest": {
"line_hashes": [
"228769927898150234651835480323393804345",
"270954001079015300471781584047775216708",
"98120535322179308472549041300040117922",
"190114870860920633510539500729998575059",
"200955017898014488574671862568673719676",
"190864817179246624365656352089060677114",
"61614675107201486269368170005390899542",
"243800986616632565632536275106214841081",
"237936628398683540137179964305079263960",
"174763973120349227275500173695384257591",
"187075835188599051946836843016788123241",
"294420696516063714116223940938198823934",
"14407052164309078511734809348346375781",
"65187848634511960711762226802270760277"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/proxy/AptProxyRecipe.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-5c8dd379",
"digest": {
"line_hashes": [
"191259212715803889327408587865906455979",
"183764289356625427939261358913619347370",
"156627527789723216846970112725368498336",
"19730734613697213145831518826595716477",
"328725902009015557046922119382048058864",
"69134356332565952421549041060618061749",
"36070118787804241404089200154882554329",
"193660353752584988370918493491998783579",
"17717468542040431211944942565703305142",
"333834454465559349115693639777617092486",
"212211863181094213303770761157085701317",
"211760637628642418028541254563635642922",
"232112900841412595642029438972642795027",
"223595643486736981858476578982607619269",
"274333299672922022425457023138051027923",
"135646830339136849493917864113766816303",
"155774754480267239395872689642426493175",
"324997978135352817665557529117533447151",
"223849085010853971692630442910991434014",
"14543468516839493417472725155451059450",
"49050192988667945046626246910064871141",
"47358097536689587986439709762149037179",
"44973004887729004928433745525148179720"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "AptProxyRecipe",
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/proxy/AptProxyRecipe.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-650d911d",
"digest": {
"function_hash": "302760111825046507701250227391770227448",
"length": 138.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "enableApt",
"file": "plugins/nexus-repository-apt/src/test/java/org/sonatype/nexus/repository/apt/internal/AptRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-6a58debe",
"digest": {
"function_hash": "311782896493547483806317345256424895906",
"length": 148.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-rest/src/main/java/org/sonatype/nexus/rest/APIConstants.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-6fdfad44",
"digest": {
"line_hashes": [
"16283208031428259429104262134465458385",
"286912648976571467683954579374798000521"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "findBestEstimate",
"file": "components/nexus-base/src/main/java/org/sonatype/nexus/internal/log/LastShutdownTimeServiceImpl.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-711e29cc",
"digest": {
"function_hash": "92403176070430360735593385238130718048",
"length": 690.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-blobstore/src/main/java/org/sonatype/nexus/blobstore/BlobAttributesSupport.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-747ca162",
"digest": {
"line_hashes": [
"253153800967211396615328834708971298105",
"209397618225522880285897057141477458318",
"187155155370155732729816707359639047474",
"332017081168932549161122822046505426362",
"290308842200682112997678253280699411605",
"140663354284396802055419811703192760779",
"38411681616073358357423558082525777859",
"321076429677012306164605546917187330483",
"221291797288172195556927154959948995062",
"26704335020680494162259647200524552254",
"122769400535839533387770905573786341539",
"57401817766096931825907280302718288330",
"153989315792467838536475163325734624327",
"49957868816688740710208185194545544216",
"41635310623298298849866141858541954687",
"99696198691138592448019804645178652343",
"67781132928629495114821901005253758475",
"45818079967686449892939945684866108183",
"171655801925414787539227343838206352643",
"183880617471971083591815160629471742000",
"127291727231394709395564681737439775890",
"331255385089190443682549102553046082997",
"207427605788413432466937281969054590755",
"101700774373621845824802401164628754338",
"247540390515959243002072218464367653637",
"100988042207736228959060201884939661186",
"31052082616006871075171876262621110557",
"2058501496774447789509785420027906312",
"251751145790489351454897225368502902849",
"254298214781723792382257978043406717018"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "configure",
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/hosted/AptHostedRecipe.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-766388b6",
"digest": {
"function_hash": "298821231785334446792276404106658730054",
"length": 616.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/AptRecipeSupport.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-864b4a43",
"digest": {
"line_hashes": [
"303728712674650825726476814878012001607",
"323887043149820727133678533041884384190",
"336857364903733834260919401136930955076",
"187744942975506872700053740382770528722",
"55780060786962360014745445115231583145",
"205089331710019254017498933158226196480",
"298526674105133104908224058824910025472",
"51551328162912874087833531050151760544",
"188378813705717027207107012265340401574",
"58335146147637364901789763668655833434",
"284058498630168622018513055026666201760",
"30912388251440356923077306568565785780",
"290750609267483667605756626187382792098",
"64605611735994111484459344296623729995",
"159976219249090246322069074181875093885",
"337695971221851731008322658333543954821",
"168500308521223623001935841605631165552",
"334679448638379154990956017196239272185"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-coreui-plugin/src/test/java/org/sonatype/nexus/coreui/SelectorComponentTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-8a3c2edb",
"digest": {
"line_hashes": [
"58013470668783997969844815034961351609",
"96662796587494187597100072574375483002",
"263351016170102611475950268982288998705",
"100391035283738154857197143073340545351",
"69606921740952950993508791536382401769",
"111133329348013314598189936109848225598",
"283390134996667945379964092506650672122",
"17520703072462136126653763643744699019",
"119365581278513362734456445423039826374",
"207899803886445059947201407785053800169",
"178344524840123514296967492346464082731",
"126781947993787271125432817403533509087",
"326353302442473188461886653219623910311",
"110212774788275574670314524740819865041",
"26891844092396695770539456261727307489",
"89853033835400362643410542913181815383",
"218714361628396097057386437737156836365",
"305531607424170917554501238635136654714",
"240624953627451490347537967064225399581",
"74882064019994295504955420863851700398",
"173408127785338208616167890931357968513",
"124386072995833798127211493329806713475",
"51273521809829283970122645895361349718",
"103804536867823983356715543713047566480",
"38235719195133031010072531954289606742",
"157546829285931141127708740417355982810",
"334299709080221231516332313652514401310",
"288217191831972471359815711282164395865",
"118487341121802442726664937761930591707",
"10628171360762777705758190733695729669"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "setUp",
"file": "plugins/nexus-repository-golang/src/test/java/org/sonatype/nexus/repository/golang/internal/hosted/GolangHostedRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-8a571568",
"digest": {
"function_hash": "270286425670308715116580707869931437639",
"length": 269.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-base/src/test/java/org/sonatype/nexus/internal/log/LastShutdownTimeServiceImplTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-8d31995d",
"digest": {
"line_hashes": [
"99911970543207404828249266313388623161",
"133511648179706982630101062778959603841",
"213120395570232844257282102076927335881",
"227783772119301254540879944393999125107",
"331992829461182625727580124579880226088",
"109500127615746909188032745215870763274",
"121635733717940579905987868594216526947",
"203335270784714468002205302080618594921",
"185467031630526470616825024863458508884",
"129598679350299087687841966114049058144",
"265976171566957432717603067383813367788",
"83264514292406772202127319053284778298",
"183577085972940554890483000246715202548",
"296290390609026615194413847153001977235",
"35272150188085616545421890147806532994"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "configure",
"file": "plugins/nexus-coreui-plugin/src/test/java/org/sonatype/nexus/coreui/SelectorComponentTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-8d4e8ad7",
"digest": {
"function_hash": "138142684169688752667544007047034203670",
"length": 405.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/hosted/AptHostedRecipe.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-8f2546e7",
"digest": {
"line_hashes": [
"19730734613697213145831518826595716477",
"328725902009015557046922119382048058864",
"69134356332565952421549041060618061749",
"36070118787804241404089200154882554329",
"193660353752584988370918493491998783579",
"39947009664916887563984779936547371895",
"317050823331331394651786086496100027066",
"8407610719091626244027380722146882505",
"38845495091740942161546551553154902381",
"232112900841412595642029438972642795027",
"223595643486736981858476578982607619269",
"65782178916031364778790187547224499741",
"338434904686169092022345550695542662569",
"335981768910931621191262217946680766787",
"264820305831281943412654964779173503268",
"223849085010853971692630442910991434014",
"14543468516839493417472725155451059450",
"308482122325924666791132987916634349994",
"55921089692130966892131303833477684502",
"54957355922658928971460649961319361380"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-blobstore-s3/src/main/java/org/sonatype/nexus/blobstore/s3/internal/S3BlobStore.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-91cb2cdd",
"digest": {
"line_hashes": [
"34875540920399694766716651477847878368",
"46777119241794242471111073488204995674",
"264177053996610587930141593693102779808",
"292346917149622666299619327232836523321"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-blobstore-api/src/main/java/org/sonatype/nexus/blobstore/api/BlobAttributes.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-9399b768",
"digest": {
"line_hashes": [
"98691140070879469479335622057370845380",
"254749287597686616273019890845716358744",
"269613363450217103700440937058250462816",
"175166989732715286809912415991601576859",
"38283314928292067992278783666782399991",
"55889632574883353793260799311907949412",
"7256146602167716296757922068182725880"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-common/src/main/java/org/sonatype/nexus/common/log/LogManager.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-98749319",
"digest": {
"line_hashes": [
"325275361953407284279736815620161403708",
"331810336495277892640854245200904249391",
"19138654924789615062944305884499549754",
"312897804901245363028393996383216548776",
"206150084496761512777448620335928347053",
"74288912288536100393346458301695284902",
"75578629497129352724859463229102809586",
"119216759767200995616268910112610332065",
"330762361711756017490926076811240160109",
"83143866425917885929409554017015400537",
"242300949727226434659259292167421048940"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-repository-apt/src/test/java/org/sonatype/nexus/repository/apt/internal/AptRecipeTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-9b90d686",
"digest": {
"line_hashes": [
"306910110564806712507065807526940381407",
"197638589653466209934268464369847749728",
"102752120546142364818416448475698414704",
"129437514898824282557067848547952881749",
"9542976538001688187151866506594004947",
"134480415646835749787066140568304988961",
"301702884331949216679664443152405610787",
"99426422233775397226747246653782110023",
"29855845926860639865155952747133015255",
"170437322022103527378007546530070533394",
"317637130232012360769804617867023889894",
"294772007220177442612930624377367102698",
"201623985736577956154979844716581356369",
"206509564781747309290546551561520120284",
"182504195983792294679402149771584411840",
"301547312856995181349390038743603552890",
"70196392093113461310565394563341717975",
"42597452672101271067565420145859516360",
"239943231526039863160834312198784718896",
"128021268761937042155385718072837943523",
"216474417131721912118261935569283665103",
"24833081557566916643500198135538688919",
"72780746865526164378780047613997334648",
"79591829493962689607695182231959924539",
"75529175546463584174058571288175097195",
"80176098830129164062355164515357851475",
"205561689855194972618542123623790425607",
"326834326762014420882716881860064544010",
"339601892759067223311384703660069470032",
"78943818419303600652564467408437252319",
"7718583852865999785703387039990827184",
"139229877669524011534592627723041051778",
"162536850792462511105664406383481271312",
"334729282778548288772191990494522377752",
"71637011339065013208874266222814735390",
"164251550513368963468638088552946062502",
"204604179178890328675470179512695359981",
"212565631271986441039323300298927120569",
"87166870674220135323977729703899124356",
"144405646073471924470924332815144977695"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "runNow",
"file": "components/nexus-quartz/src/main/java/org/sonatype/nexus/quartz/internal/task/QuartzTaskInfo.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-a2ee67be",
"digest": {
"function_hash": "61896064290819340199704467978491202197",
"length": 607.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "updateFrom",
"file": "components/nexus-blobstore/src/main/java/org/sonatype/nexus/blobstore/BlobAttributesSupport.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-ac795fdc",
"digest": {
"function_hash": "333102377973177182183200873457562659609",
"length": 178.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-base/src/main/java/org/sonatype/nexus/internal/log/LogbackLogManager.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-aee3f70a",
"digest": {
"line_hashes": [
"255401187060707852668443568624779809262",
"249296463224594610159549441820461988099",
"245618138711111076100544818508741484081",
"237724580227787931020244861001643369785",
"122670106114646786149544719339884878264",
"331514635951909878249851565455838101191",
"182203098168659778336887518957398258307",
"242270485055531151522436985121652411177",
"240176917368019274053850277970914781583",
"19167690805685315121064361712742150317",
"273600209468542615372697863238396924319"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-core/src/test/java/org/sonatype/nexus/internal/selector/SelectorManagerImplTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-af29c81d",
"digest": {
"line_hashes": [
"9957879974649531040304797824133176017",
"42412005904802213185269323312139730164",
"175117246962286924781279799747509780136",
"288272074020457621240009456973902311370",
"304766417291440311803268594080809293465",
"197675058491090850777810026851090618252",
"211920935756815158795351837158602686608",
"249497792241384452579607646405478827189",
"323881135144912271587856314894369454746",
"95070073414820053916409616909973476554",
"14162179457281759896797299259045942082",
"24237813240165589667444136198686959948",
"80625792842163008252568496502001216105",
"327593828164993392760272895568154911651",
"231434215201565453983283248876204730891",
"119208991119791574481163015603424102022",
"129920913017389247855795480633939000559",
"42488679630741809928014089200278473482",
"243831378549981697376225291550622872782",
"109078434413500209933287911872319940143"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "plugins/nexus-repository-golang/src/test/java/org/sonatype/nexus/repository/golang/internal/hosted/GolangHostedRecipeTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-afc8e39a",
"digest": {
"line_hashes": [
"197157875840943242540612322420196162799",
"119758649085784703975516477524998891727",
"45362302885455665947617445355740044920",
"277506661654893575110336717877576008443",
"123221332965404812353777337974001051632",
"134480415646835749787066140568304988961",
"301702884331949216679664443152405610787",
"29855845926860639865155952747133015255",
"170437322022103527378007546530070533394",
"21720659702745917839556036459780719588",
"310822790112695281482232382984092814729",
"315222975326708156919047098131590900093",
"167465014612067836937689816034443426364",
"182504195983792294679402149771584411840",
"301547312856995181349390038743603552890",
"70196392093113461310565394563341717975",
"42597452672101271067565420145859516360",
"157301867769003444267879062816156343924",
"41219977192289628575026575250868740606",
"209421562826312326215667677515486595526",
"252640006879344813373490970742729902033",
"120361298590755728827525244113971214836",
"58743216315258795039658006329183233549",
"149141328617218217169899135207804477984",
"80176098830129164062355164515357851475",
"205561689855194972618542123623790425607",
"164114559202283589349392606514602838003",
"50483440247347072200056440415009026715",
"162536850792462511105664406383481271312",
"334729282778548288772191990494522377752",
"71637011339065013208874266222814735390",
"108622877523993803355100223546020366806",
"13668199032743537654824550472425186161",
"218967502759494631944861735701958225338",
"147779334733323719607720566299027570786",
"257225887182869365278757084431106714823"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "getFormFields",
"file": "plugins/nexus-blobstore-s3/src/main/java/org/sonatype/nexus/blobstore/s3/internal/S3BlobStoreDescriptor.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-b06371e7",
"digest": {
"function_hash": "49879333749999423047163532295082553058",
"length": 192.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-security/src/main/java/org/sonatype/nexus/security/internal/rest/SecurityApiResourceDoc.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-b3a8dcb0",
"digest": {
"line_hashes": [
"7814938717733096456161948912210878504",
"8960058610476493381867220727458351956",
"220927188853916869285493174679441829385",
"293103062311204695018883360172906898560"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "expire",
"file": "plugins/nexus-blobstore-s3/src/main/java/org/sonatype/nexus/blobstore/s3/internal/S3BlobStore.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-bb063a61",
"digest": {
"function_hash": "277707967968683489533263530271807755557",
"length": 856.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "doDelete",
"file": "components/nexus-blobstore-file/src/main/java/org/sonatype/nexus/blobstore/file/FileBlobStore.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-bbe7de18",
"digest": {
"function_hash": "288033850720676023802699324871061508602",
"length": 822.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-blobstore-file/src/main/java/org/sonatype/nexus/blobstore/file/FileBlobStore.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-bdb497e7",
"digest": {
"line_hashes": [
"34875540920399694766716651477847878368",
"46777119241794242471111073488204995674",
"227874189194057652813221551042226400151",
"69852277466525940494521157353566898639"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "configure",
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/proxy/AptProxyRecipe.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-c040ff46",
"digest": {
"function_hash": "193738377295678437025489763199052751707",
"length": 655.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "createRepositoryContentSelectorPrivilege",
"file": "components/nexus-core/src/test/java/org/sonatype/nexus/internal/selector/SelectorManagerImplTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-d792030b",
"digest": {
"function_hash": "285194098361382493202120806519044791389",
"length": 463.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "setUp",
"file": "plugins/nexus-repository-apt/src/test/java/org/sonatype/nexus/repository/apt/internal/AptRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-dd057412",
"digest": {
"function_hash": "210615065412289677502716981149586283665",
"length": 252.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-base/src/main/java/org/sonatype/nexus/internal/log/LastShutdownTimeServiceImpl.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-ddbbe27b",
"digest": {
"line_hashes": [
"96462909473926971234693418529125824153",
"242651957922819269800238650595571039727",
"141282926315077351117406798021603314997",
"78521438873732763517727423450088194657",
"329620293230764174469635158102137121850",
"103396659452431983635340956263502871450",
"191414274884914551104566982354470907696",
"105478478378466939755891508592696335211",
"107968360022045387609863057336163562353",
"217425416556084396840907046591013332127",
"55594183890437380683825903938911483460",
"262576718201258178684253691493913278208",
"312887421369292222857165653667716957515",
"270045229365872058224497289039936483839"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "emptyNexusYieldsEmpty",
"file": "components/nexus-base/src/test/java/org/sonatype/nexus/internal/log/LastShutdownTimeServiceImplTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-ded653b1",
"digest": {
"function_hash": "237316209542824140965477713493135646104",
"length": 315.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "AptHostedRecipe",
"file": "plugins/nexus-repository-apt/src/main/java/org/sonatype/nexus/repository/apt/internal/hosted/AptHostedRecipe.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-ea052265",
"digest": {
"function_hash": "198446421875853411427694049777625126834",
"length": 139.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-security/src/main/java/org/sonatype/nexus/security/authc/AntiCsrfHelper.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-ed348229",
"digest": {
"line_hashes": [
"211713485592530792651142491841428274524",
"275551758133414047916428521674983281206",
"194199363689825315975624221519078500866",
"94760889499768599996227771572609869474",
"269459002622714111792626436176105257279",
"210143748664818411614968788329333015175",
"90240535418170651852089602677161727927",
"280880317927228342783327664779838781397",
"84937541559478126364326098009881364570",
"63654091261909400740417024717612503507",
"62556380234087624259676949218431026688",
"161694548714990203734661337198900788435",
"305238011414549221076321324983079334871"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "enableGolang",
"file": "plugins/nexus-repository-golang/src/test/java/org/sonatype/nexus/repository/golang/internal/hosted/GolangHostedRecipeTest.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-ef7063b3",
"digest": {
"function_hash": "277379962998401362999687500685711034709",
"length": 150.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-repository/src/test/java/org/sonatype/nexus/repository/tools/OrphanedBlobFinderTest.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-f8de6afe",
"digest": {
"line_hashes": [
"102978695402604313292086471283115383941",
"277367437709063946818353134396350703953",
"87309176364019639317915399359578963025",
"225480963969756282540470387922370681083",
"47145510564808629855700137365144018493",
"220210027731028042721693505972069001268",
"262235143032892444671350626132990561167"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "isNotBrowserRequest",
"file": "components/nexus-security/src/main/java/org/sonatype/nexus/security/authc/AntiCsrfHelper.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-f8fa1b9a",
"digest": {
"function_hash": "9596437075529921348133571703136020022",
"length": 144.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"function": "writeTo",
"file": "components/nexus-blobstore/src/main/java/org/sonatype/nexus/blobstore/BlobAttributesSupport.java"
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-fa4036f1",
"digest": {
"function_hash": "68993401451722992296333203299137865908",
"length": 715.0
}
},
{
"source": "https://github.com/sonatype/nexus-public/commit/99dc5603f6d3b9ecdd6288d2a50860c9cb2fabcf",
"target": {
"file": "components/nexus-blobstore-api/src/main/java/org/sonatype/nexus/blobstore/api/BlobAttributesConstants.java"
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-9629-fc5786dc",
"digest": {
"line_hashes": [
"29760646970854786590018098171539628852",
"323060604416729470502736277339153039933"
],
"threshold": 0.9
}
}
]