Description
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
Remediation
References
Related Vulnerabilities
WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.29)
Oracle Database Server CVE-2008-2611 Vulnerability (CVE-2008-2611)
WordPress 5.5.x PHP Object Injection (5.5 - 5.5.4)
WordPress Plugin Vodpod Video Gallery 'gid' Parameter Cross-Site Scripting (3.1.5)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2155)