The fix for CVE-2020-7009 was found to be incomplete. Elasticsearch versions from 6.7.0 to 6.8.7 and 7.0.0 to 7.6.1 contain a privilege escalation flaw if an attacker is able to create API keys and also authentication tokens. An attacker who is able to generate an API key and an authentication token can perform a series of steps that result in an authentication token being generated with elevated privileges.

🗓️ 01 Dec 2021 00:00:00Reported by MicrosoftType

Fix for 2020-7009 incomplete; Elasticsearch 6.7.0–6.8.7 and 7.0.0–7.6.1 allow privilege escalation via API keys and tokens.

Reporter	Title	Published	Views	Family All 53
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Observability with Instana	11 Jan 202220:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Elastic Elasticsearch	19 Jun 202005:06	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in middleware software affect IBM Cloud Pak for Automation	18 Dec 202015:33	–	ibm
CBLMariner	CVE-2020-7009 affecting package rubygem-elasticsearch 7.6.0-1	26 May 202219:04	–	cbl_mariner
CBLMariner	CVE-2020-7014 affecting package rubygem-elasticsearch 7.6.0-1	26 May 202219:04	–	cbl_mariner
CNVD	Elasticsearch Elevation of Privilege Vulnerability	1 Apr 202000:00	–	cnvd
CNVD	Elasticsearch elevation of privilege vulnerability (CNVD-2020-38868)	4 Jun 202000:00	–	cnvd
Check Point Advisories	Elasticsearch Privilege Escalation (CVE-2020-7009)	28 Jul 202000:00	–	checkpoint_advisories
Check Point Advisories	Elasticsearch Privilege Escalation (CVE-2020-7014)	17 Aug 202000:00	–	checkpoint_advisories
CVE	CVE-2020-7009	31 Mar 202019:05	–	cve