Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2018/08/22 12:0 a.m.31 views

Elasticsearch ESA-2017-18

An error was found in the X-Pack Security privilege enforcement. If a user has either delete or index permissions on an index in a cluster, they may be able to issue both delete and index requests against that index. C Tenable Network Security, Inc. include"compat.inc"; if description...

6.5CVSS6.4AI score0.00612EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/10/23 12:0 a.m.37 views

Elastic Kibana X-Pack 'CVE-2017-8447' Insufficient Access Restriction Vulnerability - Linux

Elastic Kibana with X-Pack is prone to an insufficient access restriction vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.7AI score0.00612EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/10/23 12:0 a.m.26 views

Elastic Kibana X-Pack 'CVE-2017-8447' Insufficient Access Restriction Vulnerability - Windows

Elastic Kibana with X-Pack is prone to an insufficient access restriction vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.7AI score0.00612EPSS
Exploits0References1
CVE
CVE
added 2017/09/28 7:0 p.m.61 views

CVE-2017-8447

Summary: CVE-2017-8447 affects Elastic Stack’s X-Pack Security. A bug in the privilege enforcement (versions 5.3.0–5.5.2) can let a user with either ‘delete’ or ‘index’ permissions issue both delete and index requests against the same index. This could enable unintended modification/permission re...

6.5CVSS6.3AI score0.00612EPSS
Exploits0References1Affected Software1
Elastic
Elastic
added 2017/09/11 4:20 p.m.6 views

X-Pack Security 5.6.0 and 5.5.3 security update

X-Pack Security permission issue ESA-2017-18 An error was found in the X-Pack Security privilege enforcement. If a user has either ‘delete’ or ‘index’ permissions on an index in a cluster, they may be able to issue both delete and index requests against that index. Previously if a user had bulk...

6.5CVSS6.8AI score0.00612EPSS
Exploits0
Rows per page
Query Builder