Primary

Context

Sonatype Nexus Repository 3 Cross-Site Scripting Vulnerability

Vulnerability

Patched

A stored cross-site scripting vulnerability has been introduced in Sonatype Nexus Repository 3 due to a regression in version 3.83.0. This issue affects user-uploaded content served from repositories, where a security header is no longer applied. An authenticated attacker with repository upload privileges could exploit this vulnerability, potentially leading to privilege escalation.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, with the possibility of privilege escalation on the Nexus Repository instance.

Remediation

Users are advised to upgrade to Sonatype Nexus Repository version 3.87.0 or later. If an immediate upgrade is not possible, temporary mitigations include setting the Content Disposition in repository settings to 'attachment' or configuring a reverse proxy to add the Content-Security-Policy sandbox header for content served from '/repository/' paths.

Added: Dec 4, 2025, 7:24 PM

Updated: Dec 4, 2025, 7:24 PM

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

1.7

exploitability

5.0

remediation

7.9

relevance

1.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

1.7

exploitability

5.0

remediation

7.9

relevance

1.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sonatype Nexus Repository 3 Cross-Site Scripting Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Sonatype Nexus Repository

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating