0.001 Low
EPSS
Percentile
44.4%
Elasticsearch before 7.14.0 did not apply document and field level security to searchable snapshots. This could lead to an authenticated user gaining access to information that they are unauthorized to view.
bugzilla.redhat.com/show_bug.cgi?id=1990094
discuss.elastic.co/t/elastic-stack-7-14-0-security-update/280344
nvd.nist.gov/vuln/detail/CVE-2021-22147
www.cve.org/CVERecord?id=CVE-2021-22147