CVE-2020-9491

CVE-2020-9491

In Apache NiFi 1.2.0 to 1.11.4, the NiFi UI and API were protected by mandating TLS v1.2, as well as listening connections established by processors like ListenHTTP, HandleHttpRequest, etc. However intracluster communication such as cluster request replication, Site-to-Site, and load balanced queues continued to support TLS v1.0 or v1.1.

Source: CVE-2020-9491

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다