Description

In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens, preventing legitimate users from requesting download tokens.

Remediation

References

https://nifi.apache.org/security#CVE-2020-9487

Related Vulnerabilities

CVE-2015-5256 Vulnerability in npm package cordova-android

CVE-2019-10326 Vulnerability in maven package io.jenkins.plugins:warnings-ng

CVE-2020-2256 Vulnerability in maven package org.jenkins-ci.plugins:pipeline-maven-parent

CVE-2021-41303 Vulnerability in maven package org.apache.shiro:shiro-core

CVE-2022-36059 Vulnerability in npm package matrix-js-sdk

Severity

High

Classification

CWE-306 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Vendor Advisory