Back to Advisories
🔔 CVE Advisory

CVE-2021-44145

Apache Nifi

In the TransformXML processor, an authenticated user could configure an XSLT file which, if it included malicious external entity calls, may reveal sensitive information.

Year 2022
Published February 19, 2022

Advisory Information

Affected Product Apache Nifi
Title CVE-2021-44145
Description

In the TransformXML processor, an authenticated user could configure an XSLT file which, if it included malicious external entity calls, may reveal sensitive information.

Year 2022
Published Date February 19, 2022
View Full CVE Advisory

Affected Vendors

A
Apache

Research Team

D(
DangKhai (Nguyễn Đặng Khải)