Vulnerabilities > Sonatype > Nexus Repository Manager > High

DATE CVE VULNERABILITY TITLE RISK
2020-10-12 CVE-2020-15012 Path Traversal vulnerability in Sonatype Nexus Repository Manager
A Directory Traversal issue was discovered in Sonatype Nexus Repository Manager 2.x before 2.14.19.
network
low complexity
sonatype CWE-22
7.8
7.8
2019-07-08 CVE-2019-9629 Improper Authentication vulnerability in Sonatype Nexus Repository Manager
Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults (fixed credentials).
network
low complexity
sonatype CWE-287
7.5
7.5