Логотип exploitDog
bind:CVE-2017-15697
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2017-15697

Количество 2

Количество 2

nvd логотип

CVE-2017-15697

больше 7 лет назад

A malicious X-ProxyContextPath or X-Forwarded-Context header containing external resources or embedded code could cause remote code execution. The fix to properly handle these headers was applied on the Apache NiFi 1.5.0 release. Users running a prior 1.x release should upgrade to the appropriate release.

CVSS3: 9.8
EPSS: Низкий
github логотип

GHSA-29ph-fjf3-c5cm

больше 3 лет назад

Apache NiFi XSS issue in context path handling

CVSS3: 9.8
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
nvd логотип
CVE-2017-15697

A malicious X-ProxyContextPath or X-Forwarded-Context header containing external resources or embedded code could cause remote code execution. The fix to properly handle these headers was applied on the Apache NiFi 1.5.0 release. Users running a prior 1.x release should upgrade to the appropriate release.

CVSS3: 9.8
1%
Низкий
больше 7 лет назад
github логотип
GHSA-29ph-fjf3-c5cm

Apache NiFi XSS issue in context path handling

CVSS3: 9.8
1%
Низкий
больше 3 лет назад

Уязвимостей на страницу