CVE-2020-10204

HIGH

Sonatype Nexus < 3.21.2 - Remote Code Execution

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-10204. PoCs published by zhzyker.

AI-analyzed exploit summary This is a functional exploit for CVE-2020-10204, targeting Nexus Repository Manager 3.x (OSS/Pro <= 3.21.1). It leverages a deserialization vulnerability in the ExtDirect API to achieve remote code execution via crafted JSON payloads.

Description

Sonatype Nexus Repository before 3.21.2 allows Remote Code Execution.

Exploits (1)

nomisec WORKING POC 13 stars

by zhzyker · poc

https://github.com/zhzyker/CVE-2020-10204

View Code ZIP pw:eip

This is a functional exploit for CVE-2020-10204, targeting Nexus Repository Manager 3.x (OSS/Pro <= 3.21.1). It leverages a deserialization vulnerability in the ExtDirect API to achieve remote code execution via crafted JSON payloads.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Nexus Repository Manager 3.x OSS / Pro <= 3.21.1

Auth required

Prerequisites: Valid session cookie (NXSESSIONID) · Network access to the target's ExtDirect API endpoint

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_confirm

https://support.sonatype.com/hc/en-us/articles/360044356194

Scores

CVSS v3 7.2

EPSS 0.2432

EPSS Percentile 97.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-20

Status published

Products (2)

org.sonatype.nexus/nexus-core 0 - 3.21.2Maven

sonatype/nexus < 3.21.2

Published Apr 01, 2020

Tracked Since Feb 18, 2026