Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path."
References
Link | Resource |
---|---|
http://www.osvdb.org/104049 | |
https://support.sonatype.com/entries/42374566-CVE-2014-2034-Nexus-Security-Advisory-REST-API | Vendor Advisory |
http://www.sonatype.org/advisories/archive/2014-03-03-Nexus | Vendor Advisory |
http://www.securityfocus.com/bid/65956 | |
http://secunia.com/advisories/57142 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-03-31 20:25
Updated : 2014-04-01 05:55
NVD link : CVE-2014-2034
Mitre link : CVE-2014-2034
JSON object : View
CWE
Products Affected
sonatype
- nexus