Search for packages
| purl | pkg:maven/org.apache.nifi/nifi-security-utils@1.11.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-zm6p-jqw1-zfdp | Insertion of Sensitive Information into Log File In Apache NiFi 0.0.1 to 1.11.0, the flow fingerprint factory generated flow fingerprints which included sensitive property descriptor values. In the event a node attempted to join a cluster and the cluster flow was not inheritable, the flow fingerprint of both the cluster and local flow was printed, potentially containing sensitive values in plaintext. |
CVE-2020-1942
GHSA-7q8g-gpfp-v8gx |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:37:09.833381+00:00 | GitLab Importer | Fixing | VCID-zm6p-jqw1-zfdp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-security-utils/CVE-2020-1942.yml | 38.4.0 |
| 2026-04-11T22:51:08.755222+00:00 | GitLab Importer | Fixing | VCID-zm6p-jqw1-zfdp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-security-utils/CVE-2020-1942.yml | 38.3.0 |
| 2026-04-02T23:00:34.156202+00:00 | GitLab Importer | Fixing | VCID-zm6p-jqw1-zfdp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-security-utils/CVE-2020-1942.yml | 38.1.0 |
| 2026-04-01T17:19:18.933168+00:00 | GitLab Importer | Fixing | VCID-zm6p-jqw1-zfdp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.nifi/nifi-security-utils/CVE-2020-1942.yml | 38.0.0 |