CVE-2026-10748
Vulnerability Description
An authenticated user with the nx-licensing-create privilege can upload a specially crafted license file to execute arbitrary operating system commands as the Nexus process user in Sonatype Nexus Repository 3 versions before 3.92.0.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-502
Source
NVD
Vendor
Sonatype
Product
Nexus Repository
Discussion (0)
Add Comment
No comments yet. Be the first!