CVE-2021-29159 is a vulnerability in Sonatype Nexus Repository Manager
Published on April 28, 2021

A cross-site scripting (XSS) vulnerability has been discovered in Nexus Repository Manager 3.x before 3.30.1. An attacker with a local account can create entities with crafted properties that, when viewed by an administrator, can execute arbitrary JavaScript in the context of the NXRM application.

NVD

Products Associated with CVE-2021-29159

Want to know whenever a new CVE is published for Sonatype Nexus Repository Manager? stack.watch will email you.

Sonatype Nexus Repository Manager

Exploit Probability

EPSS

0.28%

Percentile

50.92%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-29159 is a vulnerability in Sonatype Nexus Repository ManagerPublished on April 28, 2021

Products Associated with CVE-2021-29159

Exploit Probability

CVE-2021-29159 is a vulnerability in Sonatype Nexus Repository Manager
Published on April 28, 2021