Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2017/10/23 12:0 a.m.22 views

Elastic Kibana X-Pack 'CVE-2017-8438' Privilege Escalation Vulnerability - Linux

Elastic Kibana with X-Pack is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS9.1AI score0.01025EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/10/23 12:0 a.m.35 views

Elastic Kibana X-Pack 'CVE-2017-8438' Privilege Escalation Vulnerability - Windows

Elastic Kibana with X-Pack is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS9.1AI score0.01025EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/06/05 2:0 p.m.27 views

CVE-2017-8438

Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the runas functionality. This bug prevents transitioning into the specified user specified in a runas request. If a role has been created using a template that contains the user properties, the behavior of runas...

8.8AI score0.01025EPSS
Exploits0References3
CVE
CVE
added 2017/06/05 2:0 p.m.65 views

CVE-2017-8438

Elastic X-Pack Security (Elasticsearch X-Pack Security) versions 5.0.0–5.4.0 contain a privilege escalation vulnerability in the run_as functionality. The bug prevents transitioning to the specified user in a run_as request, and can misbehave if a role template includes the _user properties or if...

8.8CVSS8.7AI score0.01025EPSS
Exploits0References3Affected Software1
Elastic
Elastic
added 2017/06/01 4:29 p.m.7 views

Elastic Stack 5.4.1 and 5.3.3 Security updates

X-Pack 5.4.1 privilege escalation ESA-2017-06 X-Pack 5.4.1 has been released which fixes a privilege escalation bug in the runas functionality. This bug prevents transitioning into the specified user specified in a runas request. If a role has been created using a template that contains the user...

8.8CVSS6.3AI score0.01025EPSS
Exploits0
Rows per page
Query Builder