CVE-2017-5636
CVE-2017-5636 affects Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment. The issue is a vulnerability in the proxy chain serialization/deserialization that can be exploited by crafting a username to impersonate another user and gain their permissions on a replicated request t...