VYPR

InvokeHTTP

by Apache

CVEs (1)

  • CVE-2023-41180MedSep 3, 2023
    risk 0.38cvss 5.9epss 0.00

    Incorrect certificate validation in InvokeHTTP on Apache NiFi MiNiFi C++ versions 0.13 to 0.14 allows an intermediary to present a forged certificate during TLS handshake negotation. The Disable Peer Verification property of InvokeHTTP was effectively flipped, disabling…