One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8308903 |
| Date de publication | 2023-02-10 08:15:12 (vue: 2023-02-10 16:08:07) |
| Titre | CVE-2023-22832 |
| Texte | The ExtractCCDAAttributes Processor in Apache NiFi 1.2.0 through 1.19.1 does not restrict XML External Entity references. Flow configurations that include the ExtractCCDAAttributes Processor are vulnerable to malicious XML documents that contain Document Type Declarations with XML External Entity references. The resolution disables Document Type Declarations and disallows XML External Entity resolution in the ExtractCCDAAttributes Processor. |
| Notes | |
| Envoyé | Oui |
| Condensat | 2023 22832 apache are configurations contain cve declarations disables disallows document documents does entity external extractccdaattributes flow include malicious nifi not processor references resolution restrict through type vulnerable xml |
| Tags | |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.