← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-7238 — Actively Exploited: Nexus Repository Manager (Sonatype)

Sonatype Nexus Repository Manager before 3.15.0 has an incorrect access control vulnerability. Exploitation allows for remote code execution.

CVE IDCVE-2019-7238
VendorSonatype
ProductNexus Repository Manager
Vulnerability nameSonatype Nexus Repository Manager Incorrect Access Control Vulnerability
Date added2021-12-10
Remediation due2022-06-10
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionSonatype Nexus Repository Manager before 3.15.0 has an incorrect access control vulnerability. Exploitation allows for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →