← back
CVE-2019-5475

CVE-2019-5475

EPSS 18.4%CWE-78
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 18.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
03 Sep 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
Affected products
n/a · Nexus Repository Manager

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://hackerone.com/reports/654888