Nexus
by Sonatype
Take action — actively targeted
Nexus is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
60.0%
Confirmed actively exploited (CISA)
20.0%
Public exploit code available
20.0%
Based on 5 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2020-10199 | 8.8 | 94.4% | Yes |
| CVE-2020-11444 | 8.8 | 58.7% | — |
| CVE-2020-10204 | 7.2 | 56.5% | — |
| CVE-2020-10203 | 4.8 | 0.4% | — |
| CVE-2020-24622 | 4.9 | 0.2% | — |
57
/ 100
high-risk
Active Threat
46/50 · Critical
Exploit Availability
11/50 · Low
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.