3 matches found
CVE-2021-22149
Elastic Enterprise Search App Search versions before 7.14.0 are vulnerable to an issue where API keys were missing authorization via an alternate route. Using this vulnerability, an authenticated attacker could utilize API keys belonging to higher privileged users...
Authorization
Elastic Enterprise Search App Search versions before 7.14.0 are vulnerable to an issue where API keys were missing authorization via an alternate route. Using this vulnerability, an authenticated attacker could utilize API keys belonging to higher privileged users...
Cisco IOS XR Access Control Error Vulnerability (CNVD-2020-34297)
Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. An access control error vulnerability exists in the ACL function of the alternate route processor management interface in Cisco IOS XR Software. A remote attacker could exploit this...