Primary

Context

Apache NiFi MongoDB Credential Exposure in Provenance Events Vulnerability

Vulnerability

Patched

A vulnerability in Apache NiFi versions 1.13.0 through 2.2.0 allows for the inclusion of MongoDB authentication credentials in provenance event records generated by MongoDB components. This issue enables authorized users with read access to these provenance events to view the exposed usernames and passwords. The vulnerability arises from the improper handling of authentication details in provenance records, which can be accessed during the processing of MongoDB-related tasks.

Impact

The vulnerability could lead to unauthorized exposure of MongoDB usernames and passwords, potentially allowing for unauthorized access to MongoDB databases or operations.

Remediation

Users are advised to upgrade to Apache NiFi version 2.3.0, which removes MongoDB credentials from provenance event records.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apache NiFi MongoDB Credential Exposure in Provenance Events Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Apache NiFi

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating