Description

Sonatype Nexus Repository Manager before 3.14 has Incorrect Access Control.

Remediation

References

CVE-2018-16620

Related Vulnerabilities

WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.4)

Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26883)

Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2021-41307)

WordPress Plugin Lightbox Photo Gallery Cross-Site Request Forgery (1.0)

WordPress Plugin Namaste! LMS Cross-Site Scripting (2.5.9.4)

Severity

High

Classification

CVE-2018-16620 CWE-863 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities