CVE-2017-7665

Source
https://nvd.nist.gov/vuln/detail/CVE-2017-7665
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7665.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-7665
Aliases
Published
2017-06-12T16:29:00Z
Modified
2024-09-03T01:58:33.883196Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

In Apache NiFi before 0.7.4 and 1.x before 1.3.0, there are certain user input components in the UI which had been guarding for some forms of XSS issues but were insufficient.

References

Affected packages

Git / github.com/apache/nifi

Affected ranges

Type
GIT
Repo
https://github.com/apache/nifi
Events

Affected versions

docker/nifi-1.*

docker/nifi-1.2.0

nifi-0.*

nifi-0.0.1-incubating-RC3
nifi-0.0.2-incubating-RC1
nifi-0.1.0-incubating-rc13
nifi-0.2.0-incubating-RC1
nifi-0.2.1-RC1
nifi-0.3.0-RC1
nifi-0.4.0
nifi-0.4.0-RC2
nifi-0.4.1
nifi-0.4.1-RC1
nifi-0.5.0
nifi-0.5.0-RC3
nifi-0.6.0
nifi-0.6.0-RC2
nifi-0.7.0-RC2
nifi-0.7.1-RC1
nifi-0.7.3-RC1

nifi-1.*

nifi-1.0.0-RC1
nifi-1.0.1-RC1
nifi-1.1.0-RC2
nifi-1.2.0-RC2

nifi-nar-maven-plugin-1.*

nifi-nar-maven-plugin-1.0.0-incubating-RC3
nifi-nar-maven-plugin-1.0.1-incubating-rc13

nifi-parent-1.*

nifi-parent-1.0.0-incubating-rc13

rel/nifi-0.*

rel/nifi-0.7.0
rel/nifi-0.7.1
rel/nifi-0.7.3

rel/nifi-1.*

rel/nifi-1.0.0
rel/nifi-1.0.1
rel/nifi-1.1.0
rel/nifi-1.2.0