org.apache.nifi:nifi-ccda-processors is vulnerable to XML External Entity (XXE). An attacker is able to provide malicious XML input containing a reference to an external entity due to improper flow configurations in the ExtractCCDAAttributes
Processor.
CPE | Name | Operator | Version |
---|---|---|---|
nifi-ccda-processors | le | 1.19.1 | |
nifi-ccda-processors | le | 1.19.1 |