Tag
artifact-registry-security
Safeguard articles tagged "artifact-registry-security" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Analysis
Sonatype Nexus Repository Unauthenticated RCE via REST AP...
A deep dive into CVE-2019-7238, the unauthenticated RCE in Sonatype Nexus Repository Manager 3 that fueled cryptomining campaigns worldwide.
Nov 23, 20257 min read
Vulnerability Analysis
Nexus Repository Manager 3 Remote Code Execution (CVE-202...
CVE-2020-10199 is a critical Java EL injection flaw in Sonatype Nexus Repository Manager 3 letting authenticated users achieve remote code execution.
Nov 23, 20257 min read