Bug ID	1140843
Summary	VUL-0: CVE-2019-9629: Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults (fixed credentials).
Classification	openSUSE
Product	openSUSE Distribution
Version	Leap 15.0
Hardware	Other
URL	https://smash.suse.de/issue/236665/
OS	Other
Status	NEW
Severity	Normal
Priority	P5 - None
Component	Security
Assignee	pmonrealgonzalez@suse.com
Reporter	wolfgang.frisch@suse.com
QA Contact	security-team@suse.de
Found By	Security Response Team
Blocker	---

CVE-2019-9629

Sonatype Nexus Repository Manager before 3.17.0 establishes a default
administrator user with weak defaults (fixed credentials).

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-9629
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9629
http://www.cvedetails.com/cve/CVE-2019-9629/
https://www.twistlock.com/labs-blog/vulnerabilities-nexus-repository-left-thousands-artifacts-exposed/

You are receiving this mail because:

You are on the CC list for the bug.