Filter
AND

Versions

1.0.0
7
1.11.4
3
0.0.1
2
0.0.2
2
0.7.0
2
1.1.0
2
1.1.1
2
1.2.0
2
1.7.1
2
0.7.1
1
0.7.3
1
1.0.1
1
1.1.2
1
1.10.0
1
1.11.0
1
1.13.0
1
1.14.0
1
1.15.0
1
1.16.0
1
1.16.2
1
1.19.1
1
1.22.0
1
1.4.0
1
1.9.2
1

maven/org.apache.nifi:nifi-jolt-transform-json-uiApache NiFi: Improper Neutralization of Input in Advanced User Interface for Jolt

high
7.9
First published (updated )
CVE-2023-49145

Apache NiFiApache NiFi: Potential Code Injection with Properties Referencing Remote Resources

high
8.8
First published (updated )
CVE-2023-36542

Apache NiFiApache NiFi: Potential Code Injection with Database Services using H2

high
8.8
First published (updated )
CVE-2023-34468

Apache NiFiXEE

high
7.5
First published (updated )
CVE-2023-22832

Apache NiFiImproper Neutralization of Command Elements in Shell User Group Provider

high
8.8
First published (updated )
CVE-2022-33140

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache NiFiImproper Restriction of XML External Entity References in Multiple Components

high
7.5
First published (updated )
CVE-2022-29265

Eclipse JettyEclipse Jetty is vulnerable to a denial of service, caused by an error when handling a request conta…

high
7.5
First published (updated )
CVE-2020-27223

Apache NiFiIn Apache NiFi 1.2.0 to 1.11.4, the NiFi UI and API were protected by mandating TLS v1.2, as well as…

high
7.5
First published (updated )
CVE-2020-9491

Apache NiFiIn Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed c…

high
7.5
First published (updated )
CVE-2020-9487

maven/org.apache.nifi:nifi-statelessIn Apache NiFi 1.10.0 to 1.11.4, the NiFi stateless execution engine produced log output which inclu…

high
7.5
First published (updated )
CVE-2020-9486

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache NiFiInfoleak

high
7.5
First published (updated )
CVE-2020-1942

Apache NiFiWhen using an authentication mechanism other than PKI, when the user clicks Log Out in NiFi versions…

high
8.8
First published (updated )
CVE-2019-12421

Oracle Utilities FrameworkA flaw was found in the Apache Commons BeanUtils, where the class property in PropertyUtilsBean is n…

high
7.5
First published (updated )
CVE-2019-10086

maven/org.apache.nifi:nifi-framework-clusterInput Validation

high
7.5
First published (updated )
CVE-2018-17194

Apache NiFiCSRF

high
7.5
First published (updated )
CVE-2018-17195

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache NiFiApache NiFi JMS Deserialization issue because of ActiveMQ client vulnerability. Malicious JMS conten…

high
7.5
First published (updated )
CVE-2018-1310

Apache NiFiInput Validation

high
7.5
First published (updated )
CVE-2017-12632

Apache NiFiIn Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, if an anonymous user requ…

high
7.5
First published (updated )
CVE-2017-5635

Apache NiFiApache NiFi before 0.7.4 and 1.x before 1.3.0 need to establish the response header telling browsers…

high
7.5
First published (updated )
CVE-2017-7667

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203