Lucene search
K

5 matches found

Circl
Circl
added 2023/02/10 4:57 p.m.6 views

CVE-2023-22832

creationtimestamp| type| source ---|---|--- 2023-02-10 16:57:37+00:00| seen| https://t.me/cibsecurity/57895...

7.5CVSS7.3AI score0.0141EPSS
Exploits0References1
NVD
NVD
added 2023/02/10 8:15 a.m.41 views

CVE-2023-22832

The ExtractCCDAAttributes Processor in Apache NiFi 1.2.0 through 1.19.1 does not restrict XML External Entity references. Flow configurations that include the ExtractCCDAAttributes Processor are vulnerable to malicious XML documents that contain Document Type Declarations with XML External Entity...

7.5CVSS7.5AI score0.0141EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/10 7:45 a.m.39 views

CVE-2023-22832 Apache NiFi: Improper Restriction of XML External Entity References in ExtractCCDAAttributes

The ExtractCCDAAttributes Processor in Apache NiFi 1.2.0 through 1.19.1 does not restrict XML External Entity references. Flow configurations that include the ExtractCCDAAttributes Processor are vulnerable to malicious XML documents that contain Document Type Declarations with XML External Entity...

7.7AI score0.0141EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/02/10 7:45 a.m.6 views

CVE-2023-22832 Apache NiFi: Improper Restriction of XML External Entity References in ExtractCCDAAttributes

The ExtractCCDAAttributes Processor in Apache NiFi 1.2.0 through 1.19.1 does not restrict XML External Entity references. Flow configurations that include the ExtractCCDAAttributes Processor are vulnerable to malicious XML documents that contain Document Type Declarations with XML External Entity...

7.1AI score0.0141EPSS
Exploits0References2
CVE
CVE
added 2023/02/10 7:45 a.m.76 views

CVE-2023-22832

CVE-2023-22832 affects Apache NiFi: ExtractCCDAAttributes Processor (versions 1.2.0–1.19.1). The issue is improper handling of XML External Entity (XXE) references via XML Document Type Declarations, enabling attacks from malicious XML documents. The documented impact is high confidentiality risk...

7.5CVSS7.4AI score0.0141EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder