Description

Apache NiFi 1.21.0 through 1.23.0 support JDBC and JNDI JMS access in several Processors and Controller Services with connection URL validation that does not provide sufficient protection against crafted inputs. An authenticated and authorized user can bypass connection URL validation using custom input formatting. The resolution enhances connection URL validation and introduces validation for additional related properties. Upgrading to Apache NiFi 1.23.1 is the recommended mitigation.

Remediation

References

https://nifi.apache.org/security.html#CVE-2023-40037

https://lists.apache.org/thread/bqbjlrs2p5ghh8sbk5nsxb8xpf9l687q

http://www.openwall.com/lists/oss-security/2023/08/18/2

Related Vulnerabilities

CVE-2021-40660 Vulnerability in maven package org.javadelight:delight-nashorn-sandbox

CVE-2020-35509 Vulnerability in maven package org.keycloak:keycloak-services

CVE-2023-29215 Vulnerability in maven package org.apache.linkis:linkis-metadata-query-service-jdbc

CVE-2022-29252 Vulnerability in maven package org.xwiki.platform:xwiki-platform-wiki-ui-mainwiki

CVE-2019-3773 Vulnerability in maven package org.springframework.ws:spring-xml

Severity

High

Classification

CWE-697 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Vendor Advisory Mailing List Third Party Advisory