CVE-2020-1928

An information disclosure vulnerability was found in Apache NiFi 1.10.0. The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present.
Configurations

Configuration 1

cpe:2.3:a:apache:nifi:1.10.0:*:*:*:*:*:*:*

Information

Published : 2020-01-28 01:15

Updated : 2022-01-01 08:03


NVD link : CVE-2020-1928

Mitre link : CVE-2020-1928

Products Affected
No products.
CWE
CWE-532

Insertion of Sensitive Information into Log File