CVE-2026-3048— Nexus Repository 3 - Improper LDAP Referral Handling
Possible ATT&CK Techniques 1AI
T1210 · Exploitation of Remote ServicesAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Sonatype | Nexus Repository | 3.0.0< 3.92.0 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-3048
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Nexus Repository 3 - Improper LDAP Referral Handling
Source: NVD (National Vulnerability Database)
Vulnerability Description
An authenticated administrator who configures or tests LDAP connectivity in Sonatype Nexus Repository Manager versions 3.0.0 through 3.91.1 may be able to initiate unintended server-side connections when interacting with a malicious LDAP server.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
可信数据的反序列化
Source: NVD (National Vulnerability Database)
Vulnerability Title
Sonatype Nexus Repository Manager 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Sonatype Nexus Repository Manager(NXRM)是美国Sonatype公司的一款存储库管理器,它主要用于管理、存储和分发软件等。 Sonatype Nexus Repository Manager 3.0.0版本至3.91.1版本存在代码问题漏洞,该漏洞源于配置或测试LDAP连接时,经过身份验证的管理员在与恶意LDAP服务器交互时可能发起非预期的服务器端连接。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Sonatype | Nexus Repository | 3.0.0 ~ 3.92.0 | cpe:2.3:a:sonatype:nexus_repository_manager:3.0.0:*:*:*:*:*:*:* |
II. Public POCs for CVE-2026-3048
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-3048
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same product: Nexus Repository
- CVE-2026-7308
Nexus Repository 3 - Stored Cross-Site Scripting (XSS) via H - CVE-2026-5189
Nexus Repository 3 - Hardcoded Credential in Internal Databa - CVE-2026-3199
Nexus Repository 3 - Authenticated Remote Code Execution via - CVE-2026-3438
Nexus Repository 3 - Reflected Cross-Site Scripting (XSS) in - CVE-2026-0600
Nexus Repository 3 - Server-Side Request Forgery in Proxy Re
Same vendor: Sonatype
- CVE-2026-7308
Nexus Repository 3 - Stored Cross-Site Scripting (XSS) via H - CVE-2026-5189
Nexus Repository 3 - Hardcoded Credential in Internal Databa - CVE-2026-3199
Nexus Repository 3 - Authenticated Remote Code Execution via - CVE-2026-3438
Nexus Repository 3 - Reflected Cross-Site Scripting (XSS) in - CVE-2026-0600
Nexus Repository 3 - Server-Side Request Forgery in Proxy Re
Same weakness: CWE-502
- CVE-2026-33233
AutoGPT Platform: Remote Code Execution via Unsafe Pickle De - CVE-2026-26978
Free PBX backup: Deserialization of Untrusted Data in admin/ - CVE-2026-8751
h2oai h2o-3 JAR Model.java importBinaryModel deserialization - CVE-2026-8735
Oinone Pamirs appConfigQuery PamirsParserConfig.java JsonUti - CVE-2026-44501
DataHub OIDC REDIRECT_URL Cookie Deserialization Vulnerabili
V. Comments for CVE-2026-3048
No comments yet