CVE-2014-0792
Published: 17 January 2014
Sonatype Nexus 1.x and 2.x before 2.7.1 allows remote attackers to create arbitrary objects and execute arbitrary code via unspecified vectors related to unmarshalling of unintended Object types.
Notes
Author | Note |
---|---|
sarnold |
I'm unclear on the relationship between Maven Indexer and Sonatype Nexus; so I'm marking maven-indexer as an involved package because I haven't seen any information to the contrary. More research is needed. |
Priority
Status
Package | Release | Status |
---|---|---|
maven-indexer
Launchpad, Ubuntu, Debian |
artful |
Ignored
(end of life)
|
bionic |
Ignored
|
|
cosmic |
Ignored
|
|
disco |
Does not exist
|
|
lucid |
Does not exist
|
|
precise |
Does not exist
|
|
quantal |
Does not exist
|
|
raring |
Does not exist
|
|
saucy |
Does not exist
|
|
trusty |
Does not exist
(trusty was needs-triage)
|
|
upstream |
Needs triage
|
|
utopic |
Ignored
(end of life)
|
|
vivid |
Ignored
(end of life)
|
|
wily |
Ignored
(end of life)
|
|
xenial |
Ignored
|
|
yakkety |
Ignored
(end of life)
|
|
zesty |
Ignored
(end of life)
|