Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.5 views

SUSE CVE-2020-7019

In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attack...

6.5CVSS7.2AI score0.01204EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2022/05/26 7:4 p.m.33 views

CVE-2020-7019 affecting package rubygem-elasticsearch 7.6.0-1

CVE-2020-7019 affecting package rubygem-elasticsearch 7.6.0-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.9AI score0.01204EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/02 8:37 p.m.22 views

Security Bulletin: IBM Cloud Private is vulnerable to Elastic vulnerabilities (CVE-2020-7018,CVE-2020-7019 )

Summary IBM Cloud Private is vulnerable to Elastic vulnerabilities Vulnerability Details CVEID: CVE-2020-7018 DESCRIPTION: Elastic Enterprise Search could allow a remote authenticated attacker to obtain sensitive information, caused by a credential exposure flaw in the App Search interface. By...

8.8CVSS0.6AI score0.01204EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.22 views

Photon OS 3.0: Elasticsearch PHSA-2020-3.0-0135

An update of the elasticsearch package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0135. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid140410;...

6.5CVSS7AI score0.01204EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/08/19 8:38 p.m.24 views

CVE-2020-7019

In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attack...

6.5CVSS6.3AI score0.01204EPSS
Exploits0References5
NVD
NVD
added 2020/08/18 5:15 p.m.19 views

CVE-2020-7019

In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attack...

6.5CVSS6.4AI score0.01204EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/08/18 4:40 p.m.28 views

CVE-2020-7019

In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attack...

6.3AI score0.01204EPSS
Exploits0References2
CVE
CVE
added 2020/08/18 4:40 p.m.88 views

CVE-2020-7019

CVE-2020-7019 affects Elasticsearch versions prior to 7.9.0 and 6.8.12. A field disclosure flaw occurs when running a scrolling search with Field Level Security: if a user runs the same query another, more privileged user recently ran, the scrolling search can leak hidden fields, potentially gran...

6.5CVSS6.2AI score0.01204EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder