CVE-2020-9491 is a vulnerability in Apache NiFi
Published on October 1, 2020

In Apache NiFi 1.2.0 to 1.11.4, the NiFi UI and API were protected by mandating TLS v1.2, as well as listening connections established by processors like ListenHTTP, HandleHttpRequest, etc. However intracluster communication such as cluster request replication, Site-to-Site, and load balanced queues continued to support TLS v1.0 or v1.1.

NVD

Products Associated with CVE-2020-9491

Want to know whenever a new CVE is published for Apache NiFi? stack.watch will email you.

Apache NiFi

Exploit Probability

EPSS

1.32%

Percentile

79.62%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-9491 is a vulnerability in Apache NiFiPublished on October 1, 2020

Products Associated with CVE-2020-9491

Exploit Probability

CVE-2020-9491 is a vulnerability in Apache NiFi
Published on October 1, 2020