Custom-Dockers/docker-nexus3
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Update Repository Manager to 3.38.0-01. #1

Merged
admin-tea merged 1 commits from update-3.38.0 into master 2022-03-19 17:40:35 +02:00
Conversation 0 Commits 1 Files Changed 6 +36 -21
admin-tea commented 2022-03-19 17:40:19 +02:00
Owner
Copy Link

Fixed in Version:

Nexus Repository 3 version 3.38.0 and later

Risk:

Medium - 6.5 - (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N)

Summary:

We have discovered an HTML injection vulnerability in Nexus Repository 3.

Sonatype Nexus Repository 3.x through 3.37.3 is vulnerable to an HTML injection. By sending a specially crafted URL request, a remote attacker may alter the displayed HTML view. This advisory provides the pertinent information needed to properly address this vulnerability along with details on how to reach us if you have any further questions or concerns.

We are highly recommending that you upgrade all instances of Nexus Repository 3 to version 3.38.0 or later. You can download the latest Nexus Repository 3 version from the following location:

Fixed in Version: Nexus Repository 3 version 3.38.0 and later Risk: Medium - 6.5 - (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N) Summary: We have discovered an HTML injection vulnerability in Nexus Repository 3. Sonatype Nexus Repository 3.x through 3.37.3 is vulnerable to an HTML injection. By sending a specially crafted URL request, a remote attacker may alter the displayed HTML view. This advisory provides the pertinent information needed to properly address this vulnerability along with details on how to reach us if you have any further questions or concerns. We are highly recommending that you upgrade all instances of Nexus Repository 3 to version 3.38.0 or later. You can download the latest Nexus Repository 3 version from the following location:
admin-tea added 1 commit 2022-03-19 17:40:20 +02:00
Update Repository Manager to 3.38.0-01. 012c1267f5
admin-tea merged commit 22d4e33270 into master 2022-03-19 17:40:35 +02:00
admin-tea deleted branch update-3.38.0 2022-03-19 17:40:35 +02:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
admin-tea
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Custom-Dockers/docker-nexus3#1
No description provided.
Delete Branch "update-3.38.0"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?