Description

In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens, preventing legitimate users from requesting download tokens.

Remediation

References

https://nifi.apache.org/security#CVE-2020-9487

Related Vulnerabilities

CVE-2019-12416 Vulnerability in maven package org.apache.deltaspike.modules:deltaspike-jsf-module-impl

CVE-2011-3375 Vulnerability in maven package org.apache.tomcat:tomcat-catalina

CVE-2022-25883 Vulnerability in maven package org.webjars.npm:semver

CVE-2020-2121 Vulnerability in maven package org.jenkins-ci.plugins:google-kubernetes-engine

CVE-2018-1999025 Vulnerability in maven package de.tracetronic.jenkins.plugins:ecutest

Severity

High

Classification

CWE-306 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Vendor Advisory