nifi-standard-processors is vulnerable to XML external entities (XXE) attacks. The vulnerability exists due to the lack of proper default configuration which disables external entities by default, allowing XXE attacks to occur.
CPE | Name | Operator | Version |
---|---|---|---|
nifi-standard-processors | le | 1.5.0 |