Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: nifi Clear
ID Title
CVE-2026-54665 Vulnerability in apache (CVE-2026-54665)
vulnerability in apache (CVE-2026-54665). Risk of unauthorized operations or information disclosure. Exploitable via `Host header`.
CVE-2026-44911 Authorization Flaw in apache (CVE-2026-44911)
vulnerability in apache (CVE-2026-44911). Risk of unauthorized operations or information disclosure.
CVE-2026-44914 Vulnerability in apache (CVE-2026-44914)
vulnerability in apache (CVE-2026-44914). Successful exploitation can lead to full system takeover.
CVE-2026-44913 Vulnerability in apache (CVE-2026-44913)
vulnerability in apache (CVE-2026-44913). Successful exploitation can lead to full system takeover.
CVE-2026-39816 Vulnerability in nifi (CVE-2026-39816)
vulnerability in nifi (CVE-2026-39816). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.9.0` or later.
CVE-2016-8748 Cross-Site Scripting (XSS) in apache (CVE-2016-8748)
cross-site scripting in apache (CVE-2016-8748). Risk of unauthorized operations or information disclosure.
CVE-2017-5635 Authentication Bypass in apache (CVE-2017-5635)
authentication bypass in apache (CVE-2017-5635). Confidential information can be exposed externally.
CVE-2017-5636 Vulnerability in apache (CVE-2017-5636)
vulnerability in apache (CVE-2017-5636). Successful exploitation can lead to full system takeover.
CVE-2017-12623 XXE (XML External Entity) in apache (CVE-2017-12623)
vulnerability in apache (CVE-2017-12623). Confidential information can be exposed externally.
CVE-2017-7665 Cross-Site Scripting (XSS) in apache (CVE-2017-7665)
cross-site scripting in apache (CVE-2017-7665). Risk of unauthorized operations or information disclosure.
CVE-2017-7667 Vulnerability in apache (CVE-2017-7667)
vulnerability in apache (CVE-2017-7667). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →