Lucene search
K

5 matches found

NVD
NVD
added 2023/10/26 5:15 p.m.24 views

CVE-2023-46666

An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a Sharepoint site then that user would have read permissions to all content on the...

6.5CVSS5.4AI score0.00365EPSS
Exploits0References2
CVE
CVE
added 2023/10/26 4:16 p.m.41 views

CVE-2023-46666

Summary: CVE-2023-46666 affects Elastic Sharepoint Online Python Connector. The issue arises when using Document Level Security with the SPO “Limited Access” feature: a user granted limited access to a single item could read all content on the SharePoint site through Elasticsearch. Affected compo...

6.5CVSS5.4AI score0.00365EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/10/26 4:16 p.m.36 views

CVE-2023-46666 Elastic Sharepoint Online Python Connector Improper Access Control

An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a Sharepoint site then that user would have read permissions to all content on the...

5.3CVSS6.5AI score0.00365EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/10/26 4:16 p.m.25 views

CVE-2023-46666 Elastic Sharepoint Online Python Connector Improper Access Control

An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a Sharepoint site then that user would have read permissions to all content on the...

5.3CVSS6.6AI score0.00365EPSS
Exploits0References2
Elastic
Elastic
added 2023/10/10 12:18 p.m.8 views

Elastic Sharepoint Online Python Connector v8.10.3.0 Security Update

Elastic Sharepoint Online Python Connector Improper Access Control ESA-2023-18 An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a...

6.5CVSS6.8AI score0.00365EPSS
Exploits0
Rows per page
Query Builder