Elasticsearch X-Pack Security Information Disclosure Vulnerability (CNVD-2017-14900)
Elasticsearch X-Pack is an extension of Elastic Stack log analysis system from the Dutch company Elasticsearch.Security is one of the features used to control access rights. A security vulnerability exists in Elasticsearch X-Pack Security versions 5.0.0 through 5.4.3. An attacker can exploit this...