VYPR

Maven package

org.apache.nifi/nifi-dbcp-service-nar

pkg:maven/org.apache.nifi/nifi-dbcp-service-nar

Vulnerabilities (1)

  • CVE-2023-34468Jun 12, 2023
    affected >= 0.0.2, < 1.22.0fixed 1.22.0

    The DBCPConnectionPool and HikariCPConnectionPool Controller Services in Apache NiFi 0.0.2 through 1.21.0 allow an authenticated and authorized user to configure a Database URL with the H2 driver that enables custom code execution. The resolution validates the Database URL and r