Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2023-31417
HistorySep 11, 2023 - 2:06 p.m.

CVE-2023-31417

2023-09-1114:06:02
redhat.com
access.redhat.com
6
elasticsearch
cve-2023-31417
audit log
sensitive information
credentials
mitigation
deprecated uris
passwords
tokens
cleartext
red hat product security
package update

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

15.3%

JSON

A flaw was found in the Elasticsearch package. Elasticsearch filters out sensitive information and credentials before logging into the audit log. It was found that this filtering was not applied when requests to Elasticsearch use certain deprecated URIs for APIs. As a result, sensitive information such as passwords and tokens might be printed in cleartext in Elasticsearch audit logs.

Mitigation

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Please update the affected package as soon as possible.

Related

osv 3
ubuntucve 1
github 1
veracode 1
cve 1
prion 1
nvd 1
cvelist 1
ibm 2
osv
osv
CVE-2023-31417
2023-10-26 18:15:08
BIT-elasticsearch-2023-31417
2024-03-06 10:52:07
Elasticsearch allows insertion of sensitive information into log files when using deprecated URIs
2023-10-26 18:30:23
ubuntucve
ubuntucve
CVE-2023-31417
2023-10-26 00:00:00
github
github
Elasticsearch allows insertion of sensitive information into log files when using deprecated URIs
2023-10-26 18:30:23
veracode
veracode
Sensitive Information Disclosure
2023-10-31 06:49:12
cve
cve
CVE-2023-31417
2023-10-26 18:15:08
prion
prion
Cross site request forgery (csrf)
2023-10-26 18:15:00
nvd
nvd
CVE-2023-31417
2023-10-26 18:15:08
cvelist
cvelist
CVE-2023-31417 Elasticsearch Insertion of sensitive information in audit logs
2023-10-26 17:47:37
ibm
ibm
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable multiple Elasticsearch vulnerabilities.
2024-02-05 20:15:42
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for November 2023.
2023-12-13 07:43:16

4.4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

15.3%

JSON
Related for RH:CVE-2023-31417
osv3ubuntucve1github1veracode1cve1prion1nvd1cvelist1ibm2