org.sonatype.nexus.plugins:nexus-yum-repository-plugin@2.14.4-01 vulnerabilities
latest version
2.16.0-01
latest non vulnerable version
first published
11 years ago
latest version published
1 years ago
licenses detected
- [2.7.0-m2,)
package registry
Direct Vulnerabilities
Known vulnerabilities in the org.sonatype.nexus.plugins:nexus-yum-repository-plugin package. This does not include vulnerabilities belonging to this package’s dependencies.
How to fix?
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
org.sonatype.nexus.plugins:nexus-yum-repository-plugin is a plugin for Sonatype Nexus 1.9.2.x or 2.X which recognizes RPMs in Nexus Maven repositories and generates Yum metadata, so that RedHat-compatible system can use Nexus as software repository. Affected versions of this package are vulnerable to Remote Code Execution (RCE) when instances using How to fix Remote Code Execution (RCE)? Upgrade | [2.11.0-01,2.14.14-01) |