Lucene search
+L

5 matches found

susecve
susecve
added 2023/02/15 4:45 a.m.6 views

SUSE CVE-2017-8450

X-Pack 5.1.1 did not properly apply document and field level security to multi-search and multi-get requests so users without access to a document and/or field may have been able to access this information...

7.5CVSS7.7AI score0.00862EPSS
Exploits0References3
nvd
nvd
added 2017/06/16 9:29 p.m.26 views

CVE-2017-8450

X-Pack 5.1.1 did not properly apply document and field level security to multi-search and multi-get requests so users without access to a document and/or field may have been able to access this information...

7.5CVSS7.6AI score0.00862EPSS
Exploits0References1
osv
osv
added 2017/06/16 9:29 p.m.4 views

CVE-2017-8450

X-Pack 5.1.1 did not properly apply document and field level security to multi-search and multi-get requests so users without access to a document and/or field may have been able to access this information...

7.5CVSS5.8AI score0.00862EPSS
Exploits0References1
prion
prion
added 2017/06/16 9:29 p.m.17 views

Information disclosure

X-Pack 5.1.1 did not properly apply document and field level security to multi-search and multi-get requests so users without access to a document and/or field may have been able to access this information...

4CVSS7.6AI score0.00862EPSS
Exploits0References1Affected Software1
cve
cve
added 2017/06/16 9:0 p.m.65 views

CVE-2017-8450

CVE-2017-8450 concerns Elastic Stack: Elastic Kibana X-Pack 5.1.1. The issue is an information-disclosure vulnerability where document and field level security were not properly enforced for multi-search and multi-get requests, potentially allowing users without access to certain documents/fields...

7.5CVSS7.6AI score0.00862EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder