CVE-2026-3329

EUVD-2026-36268
A remote unauthenticated attacker may be able to conduct credential-guessing attacks against user accounts in Sonatype Nexus Repository via authentication endpoints.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Common Weakness Enumeration
References
https://help.sonatype.com/en/sonatype-nexus-repository-3-93-0-release-notes.html
https://support.sonatype.com/hc/en-us/articles/52482870409491