CVE-2014-2034 — CVSS 7.5 (high): Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown…
CVE-2014-9389 — CVSS 7.5 (high): Directory traversal vulnerability in Sonatype Nexus OSS and Pro before 2.11.1-01 allows remote attackers to read or write to arbitrary…
CVE-2014-0792 — CVSS 7.5 (high): Sonatype Nexus 1.x and 2.x before 2.7.1 allows remote attackers to create arbitrary objects and execute arbitrary code via unspecified…