CLEANSTART-2026-DY69070

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-DY69070.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLEANSTART-2026-DY69070
Upstream
  • ghsa-2m67-wjpj-xhg9
  • ghsa-3677-xxcr-wjqv
  • ghsa-6v53-7c9g-w56r
  • ghsa-72hv-8253-57qq
  • ghsa-c3fc-8qff-9hwx
  • ghsa-p93r-85wp-75v3
  • ghsa-qqpg-mvqg-649v
  • ghsa-wg6q-6289-32hp
  • ghsa-x2wq-9x2f-fhj7
  • ghsa-x44p-gvrj-pj2r
Published
2026-05-18T13:41:59.294027Z
Modified
2026-05-21T09:15:08.833897825Z
Summary
Security fixes for CVE-2026-1605, CVE-2026-22732, CVE-2026-24281, CVE-2026-33870, CVE-2026-33871, CVE-2026-3505, CVE-2026-5588, ghsa-2m67-wjpj-xhg9, ghsa-3677-xxcr-wjqv, ghsa-6v53-7c9g-w56r, ghsa-72hv-8253-57qq, ghsa-c3fc-8qff-9hwx, ghsa-p93r-85wp-75v3, ghsa-qqpg-mvqg-649v, ghsa-wg6q-6289-32hp, ghsa-x2wq-9x2f-fhj7, ghsa-x44p-gvrj-pj2r applied in versions: 2.6.0-r0, 2.7.2-r0, 2.7.2-r2
Details

Multiple security vulnerabilities affect the apache-nifi package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / apache-nifi

Package

Name
apache-nifi

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.2-r2

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-DY69070.json"