Unrated severityNVD Advisory· Published Apr 27, 2020· Updated Aug 4, 2024

CVE-2020-11415

Description

An issue was discovered in Sonatype Nexus Repository Manager 2.x before 2.14.17 and 3.x before 3.22.1. Admin users can retrieve the LDAP server system username/password (as configured in nxrm) in cleartext.

Affected products

Sonatype/Nexus Repository Managerdescription
Sonatype/Nexus Repository Manager OSS/Prollm-fuzzy
Range: 2.x < 2.14.17, 3.x < 3.22.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.sonatype.com/hc/en-us/articles/360045360854mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000