CVE-2020-24622 : In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin

In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin user.

Published 2020-08-25 19:15:13

Updated 2022-04-28 18:27:56

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2020-24622

Sonatype » Nexus
Versions from including (>=) 3.0.0 and before (<) 3.27.0
cpe:2.3:a:sonatype:nexus:*:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 27 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.0	MEDIUM	AV:N/AC:L/Au:S/C:P/I:N/A:N	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
4.9	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N	1.2	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE-522 Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

Assigned by: nvd@nist.gov (Primary)

https://support.sonatype.com/hc/en-us/articles/360053516793

CVE-2020-24622 Nexus Repository Manager 3 - Sensitive Information Disclosure - 2020-09-15 – Sonatype Support
Vendor Advisory
https://issues.sonatype.org/browse/NEXUS-25019

[NEXUS-25019] S3 secret key can be exposed by admin user - Sonatype JIRA
Vendor Advisory

Jump to