CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Veracode•added 2026/01/08 9:8 a.m.•3 views

Deserialization Of Untrusted Data

org.apache.nifi, nifi-asana-processors is vulnerable to Deserialization Of Untrusted Data. The vulnerability is due to the use of unfiltered Java object serialization and deserialization in the GetAsanaObject Processor, which allows an attacker with access to the configured cache server to supply...

8.8CVSS8AI score0.00149EPSS

Exploits0References4Affected Software1

vulnersOsv•added 2025/12/19 12:31 p.m.•1 views

org.apache.nifi:nifi-asana-processors-nar (>=1.20.0 <=2.6.0) potentially affected by CVE-2025-66524 via org.apache.nifi:nifi-asana-processors (>=1.20.0 <=2.6.0)

org.apache.nifi:nifi-asana-processors MAVEN version =1.20.0, =1.20.0, =2.6.0 Source cves: CVE-2025-66524 Source advisory: SNYK:JAVA-ORGAPACHENIFI-14545438...

8.8CVSS5.8AI score0.00149EPSS

Exploits0

vulnersOsv•added 2025/12/19 12:31 p.m.•1 views

org.apache.nifi:nifi-asana-processors-nar (>=1.20.0 <=2.6.0) potentially affected by CVE-2025-66524 via org.apache.nifi:nifi-asana-processors (>=1.20.0 <=2.6.0)

org.apache.nifi:nifi-asana-processors MAVEN version =1.20.0, =1.20.0, =2.6.0 Source cves: CVE-2025-66524 Source advisory: OSV:GHSA-V4P2-2W39-MHRJ...

8.8CVSS5.8AI score0.00149EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by