Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-9389

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-9389
Last Modified 06 Jan 2015 11:46:57
Published 05 Jan 2015 03:59:09
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-9389

Summary

Directory traversal vulnerability in Sonatype Nexus OSS and Pro before 2.11.1-01 allows remote attackers to read or write to arbitrary files via unspecified vectors.

Vulnerable Systems

Application

  • Sonatype Nexus 2.11.0


References

CONFIRM - https://support.sonatype.com/entries/84705937-CVE-2014-9389-Nexus-Security-Advisory-Directory-Traversal

CONFIRM - http://www.sonatype.org/advisories/archive/2014-12-23-Nexus/

SECUNIA - 61134


Last Updated: 27 May 2016 11:07:26