Description

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.

Remediation

References

CVE-2019-5475

Related Vulnerabilities

WordPress Plugin My Tickets Cross-Site Scripting (1.5.0)

MySQL CVE-2024-21201 Vulnerability (CVE-2024-21201)

WordPress Plugin FCChat Widget 'Upload.php' Arbitrary File Upload (2.2.13.1)

WordPress Plugin YITH WooCommerce Social Login Security Bypass (1.3.4)

Lighttpd Other Vulnerability (CVE-2007-3949)

Severity

High

Classification

CVE-2019-5475 CWE-138 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities