First published: Mon Jun 12 2017(Updated: )
In Apache NiFi before 0.7.4 and 1.x before 1.3.0, there are certain user input components in the UI which had been guarding for some forms of XSS issues but were insufficient.
Credit: security@apache.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apache NiFi | <=0.7.3 | |
Apache NiFi | =1.0.0 | |
Apache NiFi | =1.0.1 | |
Apache NiFi | =1.1.0 | |
Apache NiFi | =1.1.1 | |
Apache NiFi | =1.1.2 | |
Apache NiFi | =1.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.