Summary
This host is installed with Nexus OSS/Pro
and is prone to security bypass vulnerability.
Impact
Successful exploitation will allow remote
attackers to bypass certain security restrictions.
Impact Level: Application
Solution
Upgrade to Nexus OSS/Pro version 2.7.2 or
later. For updates refer http://www.sonatype.org.
Insight
Certain unspecified input is not properly
verified before being used to read files.
Affected
Nexus OSS/Pro versions 2.4.0 through 2.7.1.
Detection
Get the installed version of Nexus OSS/Pro
with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-2034 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities