org.apache.nifi:nifi-security-utils@1.11.2 vulnerabilities
-
latest version
1.25.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
3 months ago
-
licenses detected
- [0.0.1-incubating,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.nifi:nifi-security-utils package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.nifi:nifi-security-utils is a system to process and distribute data. Affected versions of this package are vulnerable to Cryptographic Issues. NiFi accepts a password and encryption algorithm in
This is considered insecure practice. How to fix Cryptographic Issues? Upgrade |
[0,1.14.0)
|
org.apache.nifi:nifi-security-utils is a system to process and distribute data. Affected versions of this package are vulnerable to Information Exposure. The NiFi stateless execution engine produced log output which included sensitive property values. When a flow was triggered, the flow definition configuration JSON was printed, potentially containing sensitive values in plaintext. How to fix Information Exposure? Upgrade |
[1.10.0,1.12.0)
|