SSRF in Sonatype Nexus Repository 3
CVE-2026-14646
Nexus Repository 3 did not apply its existing Server-Side Request Forgery (SSRF) protections to HTTP redirect targets returned by proxy repository upstream servers. Any user with read access to a proxy repository backed by an attacker-cont…
Vulnerability class: SSRF (Server-Side Request Forgery)
Affected products
- Sonatype Nexus Repository 3 — versions 3.0.0
Weakness classification (CWE)
References
- 103e4ec9-0a87-450b-af77-479448ddef11 (patch)
- 103e4ec9-0a87-450b-af77-479448ddef11 (vendor-advisory)