In Apache NiFi before 0.7.4 and 1.x before 1.3.0, there are certain user input components in the UI which had been guarding for some forms of XSS issues but were insufficient.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/99009 | Third Party Advisory VDB Entry |
https://lists.apache.org/thread.html/d779d6129de1a5aa149c219b2fc6e9e78156614eaac92a89cbaf9bce%40%3Cdev.nifi.apache.org%3E |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2017-06-12T16:00:00
Updated: 2017-06-13T09:57:01
Reserved: 2017-04-11T00:00:00
Link: CVE-2017-7665
JSON object: View
NVD Information
Status : Modified
Published: 2017-06-12T16:29:00.217
Modified: 2023-11-07T02:50:14.203
Link: CVE-2017-7665
JSON object: View
Redhat Information
No data.
CWE