CVE-2021-33191
CVE-2021-33191 affects Apache NiFi MiNiFi C++ 0.5.0. The c2 protocol implements an agent-update command designed to patch the application binary, but an attacker could modify the c2-update path to execute an arbitrary command via the same privileges as the MiNiFi binary. This leads to potential a...