Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
Description
Apache MINA SSHD dependencies should be upgraded to 2.9.3 on the support branch to mitgate CVE-2023-35887. The vulnerability applies to SFTP server implementations and is not directly applicable to transitive usage in NiFi Registry, but upgrading mitigates version-based vulnerability findings.
Attachments
Issue Links
- links to