Vulnerability-Lookup

JVNDB-2026-000015

Vulnerability from jvndb - Published: 2026-02-02 15:18 - Updated:2026-02-02 15:18

Severity ?

7.6 (High) - cvssV3_0 - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N

Summary

Sonatype Nexus Repository vulnerable to server-side request forgery

Details

Nexus Repository provided by Sonatype contains the following vulnerability.

Server-side request forgery (CWE-918) - CVE-2026-0600

Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

References

Type

URL

	JVN	https://jvn.jp/en/jp/JVN64861120/index.html
	CVE	https://www.cve.org/CVERecord?id=CVE-2026-0600
	No Mapping(CWE-Other)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

Vendor

Product

Sonatype Inc.

Nexus

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-000015.html",
  "dc:date": "2026-02-02T15:18+09:00",
  "dcterms:issued": "2026-02-02T15:18+09:00",
  "dcterms:modified": "2026-02-02T15:18+09:00",
  "description": "Nexus Repository provided by Sonatype contains the following vulnerability.\u003cul\u003e\u003cli\u003eServer-side request forgery (CWE-918) - CVE-2026-0600\u003c/li\u003e\u003c/ul\u003eKazuma Matsumoto of GMO Cybersecurity by IERAE, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-000015.html",
  "sec:cpe": {
    "#text": "cpe:/a:sonatype:nexus",
    "@product": "Nexus",
    "@vendor": "Sonatype Inc.",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "7.6",
    "@severity": "High",
    "@type": "Base",
    "@vector": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N",
    "@version": "3.0"
  },
  "sec:identifier": "JVNDB-2026-000015",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN64861120/index.html",
      "@id": "JVN#64861120",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2026-0600",
      "@id": "CVE-2026-0600",
      "@source": "CVE"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-Other",
      "@title": "No Mapping(CWE-Other)"
    }
  ],
  "title": "Sonatype Nexus Repository vulnerable to server-side request forgery"
}

CVE-2026-0600 (GCVE-0-2026-0600)

Vulnerability from cvelistv5 – Published: 2026-01-14 22:29 – Updated: 2026-01-15 14:51

Title

Nexus Repository 3 - Server-Side Request Forgery in Proxy Repository Configuration

Summary

Server-Side Request Forgery (SSRF) vulnerability in Sonatype Nexus Repository 3 versions 3.0.0 and later allows authenticated administrators to configure proxy repositories with URLs that can access unintended network destinations, potentially including cloud metadata services and internal network resources. A workaround configuration is available starting in version 3.88.0, but the product remains vulnerable by default.

Severity ?

6.2 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N

CWE

CWE-918 - Server-Side Request Forgery (SSRF)

Assigner

Sonatype

References

URL

Tags

https://support.sonatype.com/hc/en-us/articles/47…

vendor-advisory

Impacted products

	Vendor	Product	Version
	Sonatype	Nexus Repository	Affected: 3.0.0 , < * (semver) cpe:2.3:a:sonatype:nexus_repository_manager:3.0.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.0.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.0.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.1.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.2.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.2.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.3.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.3.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.3.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.4.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.5.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.5.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.5.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.6.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.6.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.6.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.7.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.7.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.8.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.9.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.10.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.11.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.12.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.12.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.13.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.14.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.15.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.15.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.15.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.16.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.16.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.16.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.17.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.18.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.18.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.19.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.19.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.20.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.20.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.21.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.21.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.21.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.22.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.22.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.23.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.24.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.25.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.25.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.26.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.26.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.27.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.28.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.28.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.29.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.29.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.30.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.30.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.31.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.31.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.32.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.32.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.33.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.33.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.34.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.34.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.35.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.36.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.37.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.37.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.37.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.37.3:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.38.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.38.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.39.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.40.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.40.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.41.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.41.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.42.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.43.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.44.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.45.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.45.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.46.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.47.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.47.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.48.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.49.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.50.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.51.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.52.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.53.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.53.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.54.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.54.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.55.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.56.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.57.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.57.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.58.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.58.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.59.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.60.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.61.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.62.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.63.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.64.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.65.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.66.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.67.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.67.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.68.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.68.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.69.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.70.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.70.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.70.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.70.3:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.71.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.72.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.73.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.74.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.75.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.75.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.76.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.76.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.77.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.78.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.78.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.79.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.80.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.81.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.82.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.83.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.83.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.83.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.84.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.84.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.85.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.86.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.86.2:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.87.0:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.87.1:::::::* cpe:2.3:a:sonatype:nexus_repository_manager:3.88.0:::::::*

Credits

Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-0600",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-15T14:50:50.803243Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-15T14:51:42.898Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.1.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.3.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.3.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.3.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.5.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.5.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.5.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.6.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.6.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.6.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.7.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.7.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.8.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.9.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.10.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.11.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.12.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.12.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.13.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.14.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.15.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.15.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.15.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.16.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.16.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.16.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.17.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.18.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.18.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.19.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.19.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.20.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.20.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.21.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.21.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.21.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.22.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.22.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.23.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.24.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.25.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.25.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.26.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.26.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.27.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.28.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.28.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.29.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.29.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.30.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.30.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.31.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.31.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.32.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.32.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.33.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.33.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.34.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.34.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.35.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.36.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.37.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.37.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.37.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.37.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.38.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.38.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.39.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.40.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.40.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.41.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.41.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.42.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.43.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.44.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.45.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.45.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.46.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.47.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.47.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.48.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.49.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.50.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.51.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.52.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.53.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.53.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.54.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.54.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.55.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.56.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.57.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.57.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.58.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.58.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.59.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.60.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.61.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.62.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.63.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.64.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.65.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.66.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.67.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.67.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.68.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.68.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.69.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.70.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.70.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.70.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.70.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.71.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.72.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.73.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.74.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.75.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.75.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.76.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.76.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.77.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.78.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.78.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.79.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.80.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.81.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.82.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.83.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.83.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.83.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.84.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.84.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.85.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.86.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.86.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.87.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.87.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:sonatype:nexus_repository_manager:3.88.0:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Nexus Repository",
          "vendor": "Sonatype",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "3.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Server-Side Request Forgery (SSRF) vulnerability in Sonatype Nexus Repository 3 versions 3.0.0 and later allows authenticated administrators to configure proxy repositories with URLs that can access unintended network destinations, potentially including cloud metadata services and internal network resources. A workaround configuration is available starting in version 3.88.0, but the product remains vulnerable by default."
            }
          ],
          "value": "Server-Side Request Forgery (SSRF) vulnerability in Sonatype Nexus Repository 3 versions 3.0.0 and later allows authenticated administrators to configure proxy repositories with URLs that can access unintended network destinations, potentially including cloud metadata services and internal network resources. A workaround configuration is available starting in version 3.88.0, but the product remains vulnerable by default."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "exploitMaturity": "NOT_DEFINED",
            "privilegesRequired": "HIGH",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "LOW",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "NONE",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-918",
              "description": "CWE-918 Server-Side Request Forgery (SSRF)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-14T22:29:09.256Z",
        "orgId": "103e4ec9-0a87-450b-af77-479448ddef11",
        "shortName": "Sonatype"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://support.sonatype.com/hc/en-us/articles/47928855816595"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Nexus Repository 3 - Server-Side Request Forgery in Proxy Repository Configuration",
      "workarounds": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eStarting in version 3.88.0, administrators can configure the private network validation setting to block proxy repositories from accessing private network destinations. Cloud metadata endpoints (169.254.169.254) are always blocked regardless of configuration. See the security documentation at \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://help.sonatype.com/en/securing-nexus-repository-manager.html\"\u003ehttps://help.sonatype.com/en/securing-nexus-repository-manager.html\u003c/a\u003e for detailed configuration steps.\u003c/p\u003e"
            }
          ],
          "value": "Starting in version 3.88.0, administrators can configure the private network validation setting to block proxy repositories from accessing private network destinations. Cloud metadata endpoints (169.254.169.254) are always blocked regardless of configuration. See the security documentation at  https://help.sonatype.com/en/securing-nexus-repository-manager.html  for detailed configuration steps."
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "103e4ec9-0a87-450b-af77-479448ddef11",
    "assignerShortName": "Sonatype",
    "cveId": "CVE-2026-0600",
    "datePublished": "2026-01-14T22:29:09.256Z",
    "dateReserved": "2026-01-05T12:59:19.155Z",
    "dateUpdated": "2026-01-15T14:51:42.898Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

JVNDB-2026-000015

CVE-2026-0600 (GCVE-0-2026-0600)

Tags

Sightings

Nomenclature