Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Watch a 31-minute conference talk from Ekoparty Security Conference where security researcher Michael Stepankin explores vulnerabilities in corporate Maven repository managers. Discover how in-house repository managers like Sonatype Nexus and JFrog Artifactory, commonly used in Java ecosystems for artifact storage and dependency caching, can be exploited through specially crafted artifacts. Learn about recently discovered CVEs and see demonstrations of exploits that can achieve pre-auth remote code execution and local artifact poisoning. Gain valuable insights into web security, Java security, and supply chain vulnerabilities that are particularly relevant for security professionals working with enterprise Java environments and artifact management systems.
