Security Advisory

CVE-2020-1942

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-11 20:57:26

Last updated 2024-08-04 06:54:00

Assigner apache

State PUBLISHED

Description

In Apache NiFi 0.0.1 to 1.11.0, the flow fingerprint factory generated flow fingerprints which included sensitive property descriptor values. In the event a node attempted to join a cluster and the cluster flow was not inheritable, the flow fingerprint of both the cluster and local flow was printed, potentially containing sensitive values in plaintext.

← Browse all CVEs View on cve.org ↗