7.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2018-17194

GHSA ID

GHSA-43fp-vwwg-qgv6

EPSS Score

0.78123%

CWE

CWE-20

Published

12/20/2018

Updated

3/4/2024

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2018-17194

CVE-2018-17194: Apache NiFi Improper Input Validation vulnerability

When a client request to a cluster node was replicated to other nodes in the cluster for verification, the Content-Length was forwarded. On a DELETE request, the body was ignored, but if the initial request had a Content-Length value other than 0, the receiving nodes would wait for the body and eventually timeout. Mitigation: The fix to check DELETE requests and overwrite non-zero Content-Length header values was applied on the Apache NiFi 1.8.0 release. Users running a prior 1.x release should upgrade to the appropriate release.

(GitHub Advisory)

7.5

CVSS Score

3.0

Basic Information

CVE ID

CVE-2018-17194

GHSA ID

GHSA-43fp-vwwg-qgv6

EPSS Score

0.78123%

CWE

CWE-20

Published

12/20/2018

Updated

3/4/2024

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.apache.nifi:nifi-framework-cluster	maven	>= 1.0.0, <= 1.7.1	1.8.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper Content-Length handling during DELETE request replication. The patch introduced the 'checkContentLengthHeader' function to validate()/override this header, which is called from prepareRequest. In vulnerable versions, prepareRequest lacked this validation, making it the entry point for the flawed logic. The function's responsibility to prepare HTTP requests without proper input validation directly enabled the vulnerability.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W**n * *li*nt r*qu*st to * *lust*r no** w*s r*pli**t** to ot**r no**s in t** *lust*r *or v*ri*i**tion, t** *ont*nt-L*n*t* w*s *orw*r***. On * **L*T* r*qu*st, t** *o*y w*s i*nor**, *ut i* t** initi*l r*qu*st *** * *ont*nt-L*n*t* v*lu* ot**r t**n *, t*

Reasoning

T** vuln*r**ility st*ms *rom improp*r *ont*nt-L*n*t* **n*lin* *urin* **L*T* r*qu*st r*pli**tion. T** p*t** intro*u*** t** '****k*ont*ntL*n*t******r' *un*tion to `v*li**t*()`/ov*rri** t*is *****r, w*i** is **ll** *rom `pr*p*r*R*qu*st`. In vuln*r**l* v

7.5

Basic Information

Concerned about an active attack path?

CVE-2018-17194: Apache NiFi Improper Input Validation vulnerability

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI