Vulnerabilities > Apache > Nifi Minifi C

DATE CVE VULNERABILITY TITLE RISK
2023-09-03 CVE-2023-41180 Unspecified vulnerability in Apache Nifi Minifi C++ 0.13.0/0.14.0
Incorrect certificate validation in InvokeHTTP on Apache NiFi MiNiFi C++ versions 0.13 to 0.14 allows an intermediary to present a forged certificate during TLS handshake negotation.
network
high complexity
apache
5.9
2021-08-24 CVE-2021-33191 OS Command Injection vulnerability in Apache Nifi Minifi C++ 0.5.0/0.6.0/0.9.0
From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command which was designed to patch the application binary.
network
low complexity
apache CWE-78
critical
9.8