0.001 Low
EPSS
Percentile
38.7%
Search Guard versions before 24.0 had an issue that field caps and mapping API leak field names (but not values) for fields which are not allowed for the user when field level security (FLS) is activated.
bugzilla.redhat.com/show_bug.cgi?id=1749222
nvd.nist.gov/vuln/detail/CVE-2019-13417
search-guard.com/cve-advisory/
www.cve.org/CVERecord?id=CVE-2019-13417