Remote Code Execution Vulnerability in Nexus Yum Repository Plugin v2

Remote Code Execution Vulnerability in Nexus Yum Repository Plugin v2

CVE-2019-5475 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.

Learn more about our Web Application Penetration Testing UK.