pkg:Maven/org.apache.nifi:nifi

所有已知漏洞

• CRITICAL9.8CVE-2017-5636Injection in Apache NiFi
  from 0, < 0.7.2
• CRITICAL9.8CVE-2017-15697Apache NiFi XSS issue in context path handling
  >= 1.0.0, < 1.5.0
• HIGH8.8CVE-2022-33140Improper Neutralization of Command Elements in Shell User Group Provider
  >= 1.10.0, < 1.16.3
• HIGH7.5CVE-2017-7667Origin Validation Error in Apache NiFi
  from 0, < 0.7.4
• HIGH7.5CVE-2017-12632Apache NiFi host header poisoning issue
  >= 1.0.0, < 1.5.0
• HIGH7.5CVE-2018-1310Apache NiFi JMS Deserialization issue
  from 0, < 1.6.0
• HIGH7.5CVE-2017-5635Improper Authentication In Apache NiFi
  from 0, < 0.7.2
• HIGH7.5CVE-2022-29265Improper Restriction of XML External Entity References in Multiple Components
  >= 0.0.1, < 1.16.1
• HIGH7.5CVE-2020-9491Inadequate Encryption Strength in Apache NiFi
  >= 1.2.0, < 1.12.0-RC1
• HIGH7.5CVE-2020-9487Missing Authentication for Critical Function in Apache NiFi
  >= 1.0.0, < 1.12.0-RC1
• HIGH7.5CVE-2018-17195Cleartext Transmission of Sensitive Information in Apache nifi
  >= 1.0.0, < 1.8.0
• MEDIUM6.5CVE-2017-12623XML External Entity Reference in Apache NiFi
  >= 1.0.0, < 1.4.0
• MEDIUM6.5CVE-2021-44145Apache NiFi information disclosure by XXE
  from 0, < 1.15.1
• MEDIUM6.5CVE-2019-10080Apache NiFi information disclosure by XXE
  >= 1.3.0, < 1.10.0
• MEDIUM6.5CVE-2018-17192Improper Restriction of Rendered UI Layers or Frames in Apache nifif
  >= 1.0.0, < 1.8.0
• MEDIUM6.1CVE-2017-7665Cross-site Scripting in Apache NiFi
  from 0, < 0.7.4
• MEDIUM6.1CVE-2020-1933Cross-site scripting in Apache NiFi
  >= 1.0.0, < 1.11.0
• MEDIUM6.1CVE-2018-17193Cross site scripting in org.apache.nifi:nifi
  >= 1.0.0, < 1.8.0
• MEDIUM5.5CVE-2020-13940Improper Restriction of XML External Entity Reference in Apache NiFi
  >= 1.0.0, < 1.12.0-RC1
• MEDIUM5.4CVE-2016-8748Cross-site Scripting in Apache NiFi
  from 0, < 1.0.1
• MEDIUM5.3CVE-2019-10083Apache NiFi process group information disclosure
  >= 1.3.0, < 1.10.0