5 matches found
Elasticsearch ESA-2017-10
Elasticsearch X-Pack Security versions 5.0.0 to 5.4.3, when enabled, can result in the Elasticsearch nodes API leaking sensitive configuration information, such as the paths and passphrases of SSL keys that were configured as part of an authentication realm. This could allow an authenticated...
Elastic Kibana X-Pack 'CVE-2017-8442' Information Disclosure Vulnerability - Linux
Elastic Kibana with X-Pack is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Elastic Kibana X-Pack 'CVE-2017-8442' Information Disclosure Vulnerability - Windows
Elastic Kibana with X-Pack is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2017-8442
CVE-2017-8442 affects Elasticsearch X-Pack Security versions 5.0.0 to 5.4.3. When enabled, the Elasticsearch _nodes API can leak sensitive configuration information, including paths and passphrases of SSL keys used by an authentication realm, potentially exposing credentials to an authenticated u...
Elastic Stack 5.5 Security update
Elasticsearch X-Pack Security user credentials disclosure ESA-2017-10 Elasticsearch X-Pack Security versions 5.0.0 to 5.4.3, when enabled, can result in the Elasticsearch nodes API leaking sensitive configuration information, such as the paths and passphrases of SSL keys that were configured as...