What is CVE-2023-34468?

CVE-2023-34468 is a vulnerability in Apache Software Foundation Nifi, classified under Code Injection. Published 2023-06-12.

Is CVE-2023-34468 known to be exploited?

10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Apache Software Foundation Nifi

CVE-2023-34468

The DBCPConnectionPool and HikariCPConnectionPool Controller Services in Apache NiFi 0.0.2 through 1.21.0 allow an authenticated and authorized user to configure a Database URL with the H2 driver that enables custom code execution. The re…

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.781 (99.0th percentile) — read the EPSS interpretation.

Affected products

Apache Software Foundation Nifi — versions 0.0.2

Weakness classification (CWE)

CWE-94 — Code Injection

Public proof-of-concept exploits

mbadanoiu/CVE-2023-34468
sbouabid-sec/CVE-2023-34468-POC
Al3xx-sec/CVE-2023-34468-POC
Jeanpt/CVE-2023-34468
shoucheng3/asf__nifi_CVE-2023-34468_1-21-00
rapid7/metasploit-framework
mbadanoiu/CVE-2023-40037
nomi-sec/PoC-in-GitHub
shoucheng3/asf__
itaispiegel/infosec-workshop

References

nifi.apache.org/security.html (release-notes)
lists.apache.org/thread/7b82l4f5blmpkfcynf3y6z4x1vqo59h8 (vendor-advisory)
www.openwall.com/lists/oss-security/2023/06/12/3
packetstormsecurity.com/files/174398/Apache-NiFi-H2-Connection-String-Remote-Co…
www.cyfirma.com/outofband/apache-nifi-cve-2023-34468-rce-vulnerability-analysis…

Frequently asked questions

What is CVE-2023-34468?: CVE-2023-34468 is a vulnerability in Apache Software Foundation Nifi, classified under Code Injection. Published 2023-06-12.
Is CVE-2023-34468 known to be exploited?: 10 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.