Sonatype Nexus Repository Manager 3
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Sonatype Nexus Repository Manager 3.
By the Year
In 2026 there have been 0 vulnerabilities in Sonatype Nexus Repository Manager 3. Nexus Repository Manager 3 did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 2 | 6.55 |
| 2020 | 1 | 0.00 |
It may take a day or so for new Nexus Repository Manager 3 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Sonatype Nexus Repository Manager 3 Security Vulnerabilities
Sonatype Nexus Repository 3.x through 3.33.1-01 is vulnerable to an HTTP header injection
CVE-2021-40143
8.2 - High
- September 07, 2021
Sonatype Nexus Repository 3.x through 3.33.1-01 is vulnerable to an HTTP header injection. By sending a crafted HTTP request, a remote attacker may disclose sensitive information or request external resources from a vulnerable instance.
Injection
Sonatype Nexus Repository Manager 3 Pro up to and including 3.30.0 has Incorrect Access Control.
CVE-2021-29158
4.9 - Medium
- April 23, 2021
Sonatype Nexus Repository Manager 3 Pro up to and including 3.30.0 has Incorrect Access Control.
AuthZ
An issue was discovered in Sonatype Nexus Repository Manager in versions 3.21.1 and 3.22.0
CVE-2020-11753
- April 20, 2020
An issue was discovered in Sonatype Nexus Repository Manager in versions 3.21.1 and 3.22.0. It is possible for a user with appropriate privileges to create, modify, and execute scripting tasks without use of the UI or API. NOTE: in 3.22.0, scripting is disabled by default (making this not exploitable).
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sonatype Nexus Repository Manager 3 or by Sonatype? Click the Watch button to subscribe.
