Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nexus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-50769
Missing permission checks in Jenkins Nexus Platform Plugin 3.18.0-03 and previous versions allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials ...
Jenkins Nexus Platform
5
CVSSv2
CVE-2018-0090
A vulnerability in management interface access control list (ACL) configuration of Cisco NX-OS System Software could allow an unauthenticated, remote malicious user to bypass configured ACLs on the management interface. This could allow traffic to be forwarded to the NX-OS CPU fo...
Cisco Nx-os 7.3\\(2\\)n1\\(0.6\\)
Cisco Nx-os 8.3\\(0\\)kms\\(0.31\\)
Cisco Nx-os 8.8\\(3.5\\)s0
7.2
CVSSv2
CVE-2019-12717
A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco NX-OS Software could allow an authenticated, local malicious user to execute arbitrary commands on the underlying Linux operating system with root privileges. The vulnerability is due to insuff...
Cisco Nx-os
4.6
CVSSv2
CVE-2017-12336
A vulnerability in the TCL scripting subsystem of Cisco NX-OS System Software could allow an authenticated, local malicious user to escape the interactive TCL shell and gain unauthorized access to the underlying operating system of the device. The vulnerability exists due to insu...
Cisco Nx-os 8.1\\(1\\)s5
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
Cisco Nx-os 8.1\\(0.59\\)s0
Cisco Nx-os 8.1\\(0.2\\)s0
Cisco Nx-os 8.0\\(1\\)
Cisco Nx-os 6.0\\(2\\)a8\\(3\\)
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
7.2
CVSSv2
CVE-2017-12341
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local malicious user to perform a command injection attack. An attacker would need valid administrator credentials to perform this exploit. The vulnerability is due to insufficient input valid...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0.59\\)s0
4.9
CVSSv2
CVE-2017-12332
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local malicious user to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vul...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
5
CVSSv2
CVE-2019-1858
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause the SNMP application to leak system memory, which could cause an affected device ...
Cisco Nx-os
Cisco Firepower Extensible Operating System
Cisco Fx-os
5
CVSSv2
CVE-2018-16620
Sonatype Nexus Repository Manager prior to 3.14 has Incorrect Access Control.
Sonatype Nexus Repository Manager
6.5
CVSSv2
CVE-2018-16621
Sonatype Nexus Repository Manager prior to 3.14 allows Java Expression Language Injection.
Sonatype Nexus Repository Manager
4
CVSSv2
CVE-2021-42568
Sonatype Nexus Repository Manager 3.x up to and including 3.35.0 allows malicious users to access the SSL Certificates Loading function via a low-privileged account.
Sonatype Nexus Repository Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »