Ask Question
« General Questions on Nuxeo

Security vulnerability

Hello,

The GitHub Security Lab team has found a potential vulnerability in Nuxeo. Please, let us know how to report the details privately. Alternatively , create a GitHub Security Advisory and invite me (pwntester) in to further disclose and discuss the vulnerability details and potential fix.

Kind regards, Alvaro Muñoz
GitHub Security Lab

Alvaro Munoz
Member (30)   1   0   0 		04/27/2021 ( History)
0 votes
1 answers
653 views
ANSWER
ANSWERS

Hi Alvaro, Could you send an email to security@nuxeo.com for private communication about security-related issues? Thanks. Florent

Florent Guillaume
Member (36K)   6   8   8 		04/27/2021 ( History)
0 votes
Follow
Tags
Linked Questions
Related Questions
(7.10) (CMIS Atompub) : are the secondarytypes (dynamic facets) settable at all through CMIS ?
Unit test not loading custom document type
Nuxeo-rating dependencies?
customizing default permissions in securityService
Nuxeo-drive and ssl_ciphers
Nuxeo drive sync
Validate on multiple widget fields
How can documents and metadata associated to it be encrypted in Nuxeo?
Setup: Nuxeo's write permissions on os level?
Missing entry in LDAP