UBUNTU-CVE-2014-0792

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2014-0792

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-0792.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2014-0792

Upstream

CVE-2014-0792

Withdrawn

2025-08-01T19:34:26Z

Published

2014-01-17T20:55:00Z

Modified

2025-08-01T04:49:23Z

Severity

Ubuntu - medium

Summary

[none]

Details

Sonatype Nexus 1.x and 2.x before 2.7.1 allows remote attackers to create arbitrary objects and execute arbitrary code via unspecified vectors related to unmarshalling of unintended Object types.

References

Affected packages

Ubuntu:Pro:16.04:LTS / maven-indexer

Package

Name: maven-indexer
Purl: pkg:deb/ubuntu/maven-indexer@5.1.1-4?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.1.1-1

5.1.1-2

5.1.1-3

5.1.1-4

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-0792.json"

Ubuntu:Pro:18.04:LTS / maven-indexer

Package

Name: maven-indexer
Purl: pkg:deb/ubuntu/maven-indexer@5.1.1-6?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.1.1-5

5.1.1-6

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2014/UBUNTU-CVE-2014-0792.json"