Rewterz Threat Advisory – CVE-2023-49145 – Apache NiFi Vulnerability - Rewterz

Rewterz Threat Advisory – CVE-2022-41678 – Apache ActiveMQ Vulnerability

November 29, 2023

Rewterz Threat Advisory – Multiple Apache Superset Vulnerabilities

November 29, 2023

Rewterz Threat Advisory – CVE-2023-49145 – Apache NiFi Vulnerability

Severity

High

Analysis Summary

CVE-2023-40363

IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings.

Impact

Cross-Site Scripting
Information Theft

Indicators Of Compromise

CVE

CVE-2023-40363

Affected Vendors

Apache

Affected Products

Apache NiFi 0.7.0
Apache NiFi 1.23.2

Remediation

Upgrade to the latest version of Apache NiFi, available from the Apache Web site.

Apache Web site