Description
In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token (one-time password) mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens, preventing legitimate users from requesting download tokens.
Remediation
References
https://nifi.apache.org/security#CVE-2020-9487
Related Vulnerabilities
CVE-2022-37423 Vulnerability in maven package org.neo4j.procedure:apoc
CVE-2023-36542 Vulnerability in maven package org.apache.nifi:nifi-dbcp-service
CVE-2021-31411 Vulnerability in maven package com.vaadin:flow-server
CVE-2011-3375 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2023-26031 Vulnerability in maven package org.apache.hadoop:hadoop-yarn-project