CVE-2026-39816 | Apache NiFi up to 2.7.x TinkerpopClientService permission

Inserito da Angelo Barbosa | Apr 13, 2026 | CVE

A vulnerability was found in Apache NiFi up to 2.7.x. It has been declared as critical. This issue affects some unknown processing of the component TinkerpopClientService. The manipulation results in permission issues.

This vulnerability is cataloged as CVE-2026-39816. The attack must originate from the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-39816 | Apache NiFi up to 2.7.x TinkerpopClientService permission

Post correlati

CVE-2024-47825 | Cilium up to 1.14.15/1.15.9 default permission (GHSA-3wwx-63fv-pfq6)

CVE-2026-24977 | NooTheme Organici Library Plugin up to 2.1.2 on WordPress sql injection

HPE ArubaOS CLI Service buffer overflow (ARUBA-PSA-2023-017)

CVE-2023-53146 | Linux Kernel up to 6.5.4 Media dw2102_i2c_transfer null pointer dereference