CVE-2014-2034

Published: Apr 1, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path."

Affected (19)

Products: Sonatype: Nexus

Sonatype

1 product

Nexus

Configuration A

19 vulnerable

Vulnerable Software	Affected Versions
Sonatype Nexus	Version 2.4.0
Sonatype Nexus	Version 2.4.0
Sonatype Nexus	Version 2.5.0
Sonatype Nexus	Version 2.5.0
Sonatype Nexus	Version 2.6.0
Sonatype Nexus	Version 2.6.0
Sonatype Nexus	Version 2.6.1
Sonatype Nexus	Version 2.6.1
Sonatype Nexus	Version 2.6.2
Sonatype Nexus	Version 2.6.2
Sonatype Nexus	Version 2.6.3
Sonatype Nexus	Version 2.6.3
Sonatype Nexus	Version 2.6.4
Sonatype Nexus	Version 2.6.4
Sonatype Nexus	Version 2.6.5
Sonatype Nexus	Version 2.7.0
Sonatype Nexus	Version 2.7.0
Sonatype Nexus	Version 2.7.1
Sonatype Nexus	Version 2.7.1