Attacker Value
Unknown
(1 user assessed)
Exploitability
Unknown
(1 user assessed)
User Interaction
None
Privileges Required
Low
Attack Vector
Network
0

CVE-2020-10199

Disclosure Date: April 01, 2020
Add any MITRE ATT&CK Tactics to the list below that apply to this CVE.

Description

Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection (issue 1 of 2).

General Information

Technical Analysis