Security Advisory
CVE-2020-1928
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An information disclosure vulnerability was found in Apache NiFi 1.10.0. The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present.