NiFi Single User Utilities is vulnerable to information disclosure. The vulnerability exists in writeLoginCredentials
function due to temporary file creation of NiFi containing credential information in a global directory which allows an attacker to gain read access and perform unauthorized actions.