Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
Description
Apache MINA SSHD dependencies should be upgraded to 2.11.0 on the main branch to mitgate CVE-2023-35887. The vulnerability applies to SFTP server implementations and is not directly applicable to transitive usage in NiFi Registry, but upgrading mitigates version-based vulnerability findings.
Attachments
Issue Links
- links to