Lucene search

[email protected]NVD:CVE-2023-46667

HistoryOct 26, 2023 - 1:15 a.m.

CVE-2023-46667

2023-10-2601:15:07

CWE-532

[email protected]

web.nvd.nist.gov

fleet server

plaintext

enrolment tokens

elasticsearch

third-party services

security issue

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

Confidence

High

EPSS

0.001

Percentile

21.4%

JSON

An issue was discovered in Fleet Server >= v8.10.0 and < v8.10.3 where Agent enrolment tokens are being inserted into the Fleet Server’s log file in plain text. These enrolment tokens could allow someone to enrol an agent into an agent policy, and potentially use that to retrieve other secrets in the policy including for Elasticsearch and third-party services. Alternatively a threat actor could potentially enrol agents to the clusters and send arbitrary events to Elasticsearch.

Affected configurations

Nvd

Node

elasticfleet_serverRange8.10.0–8.10.3

VendorProductVersionCPE
elasticfleet_server*cpe:2.3:a:elastic:fleet_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
elastic	fleet_server	*	cpe:2.3:a:elastic:fleet_server::::::::

References

discuss.elastic.co/t/fleet-server-v8-10-3-security-update/344737

www.elastic.co/community/security

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

AI Score

Confidence

High

EPSS

0.001

Percentile

21.4%

JSON

Related for NVD:CVE-2023-46667

vulnrichment1 cvelist1 cve1 prion1