Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-23444

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing...

7.5CVSS8AI score0.00206EPSS
Exploits0References2
OSV
OSV
added 2024/07/31 6:32 p.m.2 views

GHSA-5V8F-XX9M-WJ44 Elasticsearch stores private key on disk unencrypted

It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed in the command...

6.9CVSS7.1AI score0.00206EPSS
Exploits0References9
OSV
OSV
added 2024/07/31 6:15 p.m.10 views

CVE-2024-23444

It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed in the command...

7.5CVSS6.4AI score
Exploits0References2
OSV
OSV
added 2024/07/31 6:15 p.m.3 views

UBUNTU-CVE-2024-23444

It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed in the command...

7.5CVSS7.2AI score0.00206EPSS
Exploits0References3
Rows per page
Query Builder