Lucene search
K
ElasticMost viewed

248 matches found

Elastic
Elastic
added 2024/02/06 10:13 p.m.8 views

Kibana 8.12.1 Security Update (ESA-2024-01)

Kibana Broken Access Control issue ESA-2024-01 An issue was discovered by Elastic, whereby the Detection Engine Search API does not respect Document-level security DLS or Field-level security FLS when querying the .alerts-security.alerts-spaceid indices. Users who are authorized to call this API...

6.5CVSS6.8AI score0.005EPSS
Exploits0
Elastic
Elastic
added 2023/12/12 5:23 p.m.8 views

Kibana 8.11.2, 7.17.16 Security Update (ESA-2023-27)

Kibana Insertion of Sensitive Information into Log File ESA-2023-27 An issue was discovered by Elastic whereby sensitive information may be recorded in Kibana logs in the event of an error or in the event where debug level logging is enabled in Kibana. Elastic has released Kibana 8.11.2 which...

8CVSS6.4AI score0.00608EPSS
Exploits0
Elastic
Elastic
added 2023/12/12 5:0 p.m.8 views

Beats and Elastic Agent 8.11.3 / 7.17.16 Security Update (ESA-2023-30)

Beats and Elastic Agent Insertion of Sensitive Information into Log File An issue was discovered by Elastic whereby Beats and Elastic Agent would log a raw event in its own logs at the WARN or ERROR level if ingesting that event to Elasticsearch failed with any 4xx HTTP status code except 409 or...

6.8CVSS6.8AI score0.00589EPSS
Exploits0
Elastic
Elastic
added 2023/12/05 4:27 p.m.8 views

Elasticsearch-hadoop 7.17.11 / 8.9.0 Security Update (ESA-2023-28)

Elasticsearch-hadoop Unsafe Deserialization ESA-2023-28 An issue was identified that allowed the unsafe deserialization of java objects from hadoop or spark configuration properties that could have been modified by authenticated users. Elastic would like to thank Yakov Shafranovich, with Amazon W...

7.8CVSS7.4AI score0.00243EPSS
Exploits0
Elastic
Elastic
added 2023/10/10 12:46 p.m.8 views

Fleet Server v8.10.3 Security Update

Fleet Server Insertion of Sensitive Information into Log File ESA-2023-20 An issue was discovered in Fleet Server = v8.10.0 and = v8.10.0 and v8.10.3 Solutions and Mitigations: If an affected version is being utilized then upgrade to Fleet Server v8.10.3 or above. If there are ephemeral container...

8.1CVSS6.3AI score0.00473EPSS
Exploits0
Elastic
Elastic
added 2023/10/10 12:40 p.m.8 views

Kibana 8.10.3, 7.17.14 Security Update

Kibana heap buffer overflow vulnerability ESA-2023-19 On Sept 11, 2023, Google Chrome announced CVE-2023-4863, described as “Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted...

8.8CVSS8.5AI score0.99735EPSS
Exploits9
Elastic
Elastic
added 2023/10/10 12:18 p.m.8 views

Elastic Sharepoint Online Python Connector v8.10.3.0 Security Update

Elastic Sharepoint Online Python Connector Improper Access Control ESA-2023-18 An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a...

6.5CVSS6.8AI score0.00365EPSS
Exploits0
Elastic
Elastic
added 2023/09/22 11:52 a.m.8 views

Elasticsearch 8.9.0, 7.17.13 Security Update

Elasticsearch uncontrolled resource consumption ESA-2023-13 An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP...

7.5CVSS7.4AI score0.01232EPSS
Exploits0
Elastic
Elastic
added 2023/09/18 5:53 p.m.8 views

Kibana 8.10.1 Security Update

Kibana Insertion of Sensitive Information into Log File ESA-2023-17 An issue was discovered by Elastic whereby sensitive information is recorded in Kibana logs in the event of an error. The issue impacts only Kibana version 8.10.0 when logging in the JSON layout or when the pattern layout is...

9CVSS6.7AI score0.00656EPSS
Exploits0
Elastic
Elastic
added 2023/01/23 5:30 p.m.8 views

Endpoint Security 8.4.1 Security Update

Elastic Endpoint Security Local Privilege Escalation issue ESA-2022-14 An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account. Affected Versions: Version 8.4.0...

7.8CVSS6.8AI score0.00283EPSS
Exploits0
Elastic
Elastic
added 2022/08/24 3:7 p.m.8 views

Elastic Stack 8.4.0, 7.17.6 Security Statement

Elastic Statement for Oracle July Critical Patch Update CVE-2022-21540, CVE-2022-21541, CVE-2022-21549, CVE-2022-25647, CVE-2022-34169 Summary : Oracle released their July Critical Patch Update for Java SE which contains 5 CVEs. Elastic has analyzed the flaws described by these CVEs and the...

7.7CVSS8.4AI score0.17673EPSS
Exploits2
Elastic
Elastic
added 2022/05/24 4:55 p.m.8 views

Elastic Stack 7.17.4 and 8.2.1 Security Update

Elastic Stack update for CVE-2022-21449 Java vulnerability in Elliptic Curve Digital Signature Algorithm ECDSA ESA-2022-06 A vulnerability CVE-2022-21449 affecting the implementation of Elliptic Curve Digital Signing Algorithm ECDSA based signatures verification in Java JDK versions 15 and later...

7.5CVSS7.7AI score0.48235EPSS
Exploits6
Elastic
Elastic
added 2022/02/03 5:34 p.m.8 views

Kibana 7.17.0 Security Update

Kibana Cross-site scripting issue ESA-2022-01 An XSS vulnerability was found in Kibana index patterns. Using this vulnerability, an authenticated user with permissions to create index patterns can inject malicious javascript into the index pattern which could execute against other users. Affected...

5.4CVSS6AI score0.00527EPSS
Exploits0
Elastic
Elastic
added 2021/12/07 5:0 p.m.8 views

Enterprise Search 7.16.0 Security Update

Enterprise Search Information Disclosure issue ESA-2021-28 An information disclosure via GET request server-side request forgery vulnerability was discovered with the Workplace Search Github Enterprise Server integration. Using this vulnerability, a malicious Workplace Search admin could use the...

6.8CVSS6.1AI score0.00849EPSS
Exploits0
Elastic
Elastic
added 2021/01/14 6:9 p.m.8 views

Elasticsearch 7.10.2 Security Update

Elasticsearch authorization-header storage issue ESA-2021-01 An information disclosure flaw was found in the Elasticsearch async search API. Users who execute an async search will store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive reques...

4.8CVSS7AI score0.01241EPSS
Exploits0
Elastic
Elastic
added 2020/08/18 3:11 p.m.8 views

Elastic Stack 7.9.0 and 6.8.12 Security Update

Elasticsearch field disclosure flaw ESA-2020-12 A field disclosure flaw was found in Elasticsearch when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This...

6.5CVSS7.1AI score0.01204EPSS
Exploits0
Elastic
Elastic
added 2020/07/27 5:9 p.m.8 views

Elastic Stack 6.8.11 and 7.8.1 security update

Kibana regular expression denial of service flaw ESA-2020-09 Kibana versions before 6.8.11 and 7.8.1 contain a denial of service DoS flaw in Timelion. An attacker can construct a URL that when viewed by a Kibana user can lead to the Kibana process consuming large amounts of CPU and becoming...

6.7CVSS8.2AI score0.0122EPSS
Exploits0
Elastic
Elastic
added 2020/06/03 2:16 p.m.8 views

Elastic Stack 7.7.1 and 6.8.10 Security Update

Kibana cross site scripting XSS issue ESA-2020-08 The TSVB visualization in Kibana contains a stored XSS flaw. An attacker who is able to edit or create a TSVB visualization could allow the attacker to obtain sensitive information from, or perform destructive actions, on behalf of Kibana users wh...

5.4CVSS5.4AI score0.00779EPSS
Exploits0
Elastic
Elastic
added 2020/06/03 2:14 p.m.8 views

Elastic Stack 6.8.9 and 7.7.0 security update

Kibana upgrade assistant prototype pollution flaw ESA-2020-05 Kibana versions between 6.7.0 to 6.8.8 and 7.0.0 to 7.6.2 contain a prototype pollution flaw in the Upgrade Assistant. An authenticated attacker with privileges to write to the Kibana index could insert data that would cause Kibana to...

8.8CVSS8AI score0.18211EPSS
Exploits1
Elastic
Elastic
added 2020/03/31 5:8 p.m.8 views

Elastic Stack 6.8.8 and 7.6.2 security update

Elasticsearch API key privilege escalation ESA-2020-02 Elasticsearch versions from 6.7.0 to 6.8.7 and 7.0.0 to 7.6.1 contain a privilege escalation flaw if an attacker is able to create API keys. An attacker who is able to generate an API key can perform a series of steps that result in an API ke...

8.8CVSS7.2AI score0.016EPSS
Exploits0
Elastic
Elastic
added 2019/12/18 7:15 p.m.8 views

Elastic Stack 6.8.6 and 7.5.1 security update

Kibana XSS ESA-2019-17 Kibana versions before 6.8.6 and 7.5.1 contain a cross site scripting XSS flaw in the coordinate and region map visualizations. An attacker with the ability to create coordinate map visualizations could create a malicious visualization. If another Kibana user views that...

5.4CVSS5.6AI score0.00652EPSS
Exploits0
Elastic
Elastic
added 2019/07/30 6:11 p.m.8 views

Elastic APM agent for Ruby 2.9.0 security update

Elastic APM agent for Ruby client authentication flaw ESA-2019-08 A TLS certificate validation flaw was found in Elastic APM agent for Ruby versions before 2.9.0. When specifying a trusted server CA certificate via the ‘servercacert’ setting, the Ruby agent would not properly verify the certifica...

7.4CVSS6.8AI score0.00644EPSS
Exploits0
Elastic
Elastic
added 2018/09/19 1:18 a.m.8 views

Elastic Stack 6.4.1 and 5.6.12 security update

Kibana XSS issue ESA-2018-14 Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting XSS vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users. Affected Versions Versions afte...

8.8CVSS5.2AI score0.01985EPSS
Exploits0
Elastic
Elastic
added 2017/12/06 8:6 p.m.8 views

Kibana 6.0.1 and 5.6.5 security update

Kibana cross site scripting issue ESA-2017-22 Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting XSS vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users. Affected Versions: A...

6.1CVSS7.2AI score0.00904EPSS
Exploits0
Elastic
Elastic
added 2017/06/27 5:16 p.m.8 views

Elastic Stack 5.4.3 Security update

Kibana X-Pack Security user credentials disclosure ESA-2017-11 In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the result could be a redirect to an improperly initialized Kibana login screen. If the user enters credentials on this screen, the...

6.5CVSS6.4AI score0.01104EPSS
Exploits0
Elastic
Elastic
added 2016/11/15 6:13 p.m.8 views

Kibana 5.0.1 and 4.6.3 released with a fix for an open redirect vulnerability

Kibana versions 5.0.1 and 4.6.3 fix an open redirect vulnerability in the short URL feature that would allow an attacker to create a redirect from the Kibana domain to a different website. We’ve assigned this vulnerability the identifier ESA-2016-08. Thank you to the GE Digital Security Team for...

7AI score
Exploits0
Elastic
Elastic
added 2015/07/21 8:44 p.m.8 views

Logstash SSL/TLS FREAK Vulnerability CVE-2015-5378

Logstash 1.5.2 and prior versions are vulnerable to a SSL/TLS security issue called the FREAK attack. If you are using the Lumberjack input, FREAK allows an attacker to successfully implement a man in the middle attack, intercepting communication between the Logstash Forwarder agent and Logstash...

7.5CVSS6.8AI score0.02462EPSS
Exploits0
Elastic
Elastic
added 2015/06/09 9:42 p.m.8 views

Logstash File Output Vulnerability CVE-2015-4152

Summary: Logstash versions 1.4.2 and prior are vulnerable to a directory traversal attack that allows an attacker to over-write files on the server running Logstash. This vulnerability is not present in the initial installation of Logstash. The vulnerability is exposed when the file output plugin...

6.4CVSS6.9AI score0.0303EPSS
Exploits1
Elastic
Elastic
added 2026/07/01 1:59 p.m.7 views

Kibana 8.19.15, 9.3.4 Security Update (ESA-2026-49)

Allocation of Resources Without Limits or Throttling in Kibana Leading to Denial of Service Allocation of Resources Without Limits or Throttling CWE-770 in Kibana can lead to a denial of service via Excessive Allocation CAPEC-130. An authenticated user can submit a specially crafted bulk deletion...

6.5CVSS5.7AI score0.00251EPSS
Exploits0
Elastic
Elastic
added 2026/03/19 4:56 p.m.7 views

Packetbeat 8.19.11, 9.2.5 Security Update (ESA-2026-11)

Improper Validation of Array Index in Packetbeat Leading to Denial of Service Improper Validation of Array Index CWE-129 in multiple protocol parser components in Packetbeat can lead Denial of Service via Input Data Manipulation CAPEC-153. An attacker with the ability to send specially crafted,...

5.7CVSS5.7AI score0.00239EPSS
Exploits0
Elastic
Elastic
added 2026/03/19 4:54 p.m.7 views

Metricbeat 8.19.13, 9.2.5 Security Update (ESA-2026-09)

Memory Allocation with Excessive Size Value in Metricbeat Leading to Denial of Service Memory Allocation with Excessive Size Value CWE-789 in the Prometheus remotewrite HTTP handler in Metricbeat can lead Denial of Service via Excessive Allocation CAPEC-130. Affected Versions: 8.x: All versions...

5.7CVSS5.8AI score0.00179EPSS
Exploits0
Elastic
Elastic
added 2025/01/21 10:50 a.m.7 views

Kibana 7.17.23 and 8.14.2 Security Update (ESA-2024-26)

Kibana allocation of resources without limits or throttling leads to crash ESA-2024-26 An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/logentries/summary. This can be carried out by users with read access to the...

6.5CVSS6.7AI score0.0036EPSS
Exploits0
Elastic
Elastic
added 2024/07/31 5:12 p.m.7 views

Elasticsearch 8.13.0/7.17.23 Security Update (ESA-2024-12)

Elasticsearch elasticsearch-certutil csr fails to encrypt private key ESA-2024-12 It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is...

7.5CVSS6.9AI score0.00206EPSS
Exploits0
Elastic
Elastic
added 2023/12/12 5:6 p.m.7 views

Enterprise Search 8.11.2 / 7.17.16 Security Update (ESA-2023-31)

Enterprise Search Insertion of Sensitive Information into Log File ESA-2023-31 An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion o...

6.8CVSS6.5AI score0.00594EPSS
Exploits0
Elastic
Elastic
added 2023/12/12 4:57 p.m.7 views

Elasticsearch 8.11.2, 7.17.16 Security Update (ESA-2023-29)

Elasticsearch Insertion of Sensitive Information into Log File ESA-2023-29 An issue was discovered by Elastic whereby Watcher search input logged the search query results on DEBUG log level. This could lead to raw contents of documents stored in Elasticsearch to be printed in logs. Elastic has...

6.5CVSS6.6AI score0.00445EPSS
Exploits0
Elastic
Elastic
added 2023/11/22 9:18 a.m.7 views

Elasticsearch 7.17.14 / 8.10.3 Security Update (ESA-2023-24)

Elasticsearch Improper Handling of Exceptional Conditions ESA-2023-24 It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API. Affected Versions: Elasticsearch versions on or afte...

7.5CVSS7.5AI score0.00844EPSS
Exploits0
Elastic
Elastic
added 2023/07/18 9:57 a.m.7 views

Elastic Cloud Enterprise (ECE) 2.13.3, 3.3.0 Security Update

ECE Denial of Service DoS issue ESA-2023-09 A denial of service vulnerability was discovered in ECE that could lead to the ECE Admin API server becoming unavailable if a maliciously crafted JWT is supplied. This is due to the use of a transitive dependency json-smart which parses nested arrays in...

7.5CVSS7.8AI score0.01119EPSS
Exploits1
Elastic
Elastic
added 2023/05/02 4:1 p.m.7 views

Elastic Stack 8.7.0, 7.17.10 Security Updates

Filebeat Information Exposure ESA-2023-04 A flaw was discovered in the Filebeat httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled. Affected Versions: All filebeat versions through 7.17.9 and 8.6....

6.5CVSS5.8AI score0.00806EPSS
Exploits2
Elastic
Elastic
added 2023/02/16 10:56 p.m.7 views

Kibana 7.17.9 and 8.6.2 Security Update

Kibana open redirect issue ESA-2023-03 An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL. Affected Versions: Kibana Versions 7.0.0 through 7.17.8 and 8.0.0 through 8.6.1 Solutions and...

6.1CVSS6.3AI score0.00513EPSS
Exploits0
Elastic
Elastic
added 2023/01/23 5:34 p.m.7 views

Endpoint Security 8.4.0/7.17.7 and Endgame 3.62.3 Security Update

Elastic Endpoint Security Local Privilege Escalation issue ESA-2022-13 An issue was discovered in the quarantine feature of Elastic Endpoint Security and Elastic Endgame for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account. Affected...

7.8CVSS6.9AI score0.00269EPSS
Exploits0
Elastic
Elastic
added 2022/12/09 7:18 p.m.7 views

Kibana 7.17.8 and 8.5.0 Security Update

Update Log 2022-12-23 : Updated impact section with additional details. 2023-01-09 : Updated impact section to include RHEL 2023-01-23 : Updated impact section with additional details. Updated Solutions and Mitigations section with new mitigation option. Updated Affected Versions section. Kibana...

8.8CVSS8.8AI score0.1372EPSS
Exploits2
Elastic
Elastic
added 2022/11/02 6:41 p.m.7 views

Elastic Security Statement for OpenSSL CVE-2022-3786 and CVE-2022-3602, OpenSSL version 3.0.7

Elastic Products are not affected by this issue. On Oct 25, 2022, Elastic became aware of the Forthcoming OpenSSL 3.0.7 Release announcement, which was made available on Nov 1, 2022. The security issues addressed in this release do not affect OpenSSL versions before 3.0. Elastic has performed an...

7.5CVSS8.6AI score0.92488EPSS
Exploits6
Elastic
Elastic
added 2021/12/09 5:25 p.m.7 views

APM Java Agent Security Update

APM Java Agent Local Privilege Escalation issue ESA-2021-30 A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious plugin to an application running the APM Java agent. By using this vulnerability, an attacker could execute code at...

7.8CVSS7.3AI score0.00249EPSS
Exploits0
Elastic
Elastic
added 2021/04/27 7:28 p.m.7 views

7.12.1 Security Update

Kibana denial of service issue ESA-2021-10 A denial of service vulnerability was found in the Kibana webhook actions due to a lack of timeout or a limit on the request size. An attacker with permissions to create webhook actions could drain the Kibana host connection pool, making Kibana unavailab...

7.5CVSS6.9AI score0.0127EPSS
Exploits0
Elastic
Elastic
added 2021/03/23 5:40 p.m.7 views

Elastic Stack 7.12.0 and 6.8.15 Security Update

Elasticsearch Suggester & Profile API information disclosure flaw ESA-2021-06 A document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document leve...

5.3CVSS6.9AI score0.01162EPSS
Exploits0
Elastic
Elastic
added 2021/02/04 2:19 p.m.7 views

Elastic APM Agent for Go 1.11.0 Security Update

Elastic APM Agent for Go information disclosure ESA-2021-02 The Elastic APM agent for Go can leak sensitive HTTP header information when logging the details during an application panic. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM...

2.7CVSS6.3AI score0.00521EPSS
Exploits0
Elastic
Elastic
added 2020/10/22 3:34 p.m.7 views

Elastic Stack 7.9.3 and 6.8.13 Security Update

Elasticsearch field disclosure flaw ESA-2020-13 A document disclosure flaw was found in Elasticsearch when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex queries. This could result in the search disclosing the...

7.4CVSS6.2AI score0.00999EPSS
Exploits1
Elastic
Elastic
added 2020/08/18 3:16 p.m.7 views

Enterprise Search 7.9.0 security update

Enterprise Search credential exposure flaw ESA-2020-11 Elastic Enterprise Search versions before 7.9.0 contain a credential exposure flaw in the App Search interface. If a user is given the ‘developer’ role, they will be able to view the administrator API credentials. These credentials could allo...

8.8CVSS6.6AI score0.0109EPSS
Exploits0
Elastic
Elastic
added 2019/12/02 4:39 p.m.7 views

Elastic Stack 7.5.0 security update

Metricbeat and Filebeat DSA public key panic ESA-2019-15 A denial of service flaw when parsing malformed DSA public keys was discovered in Go, the language used to implement Beats. If Metricbeat or Filebeat are configured to accept incoming TLS connections with client authentication enabled, a...

7.5CVSS9.6AI score0.04693EPSS
Exploits1
Elastic
Elastic
added 2019/08/21 3:19 p.m.7 views

Elastic APM agent for Python 5.1.0 security update

Elastic APM agent for Python client CGI proxy redirection flaw ESA-2019-11 When the Elastic APM agent for Python is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the proxy header. This could result in an attacker redirecting collected APM data to a prox...

7.2CVSS9.1AI score0.0151EPSS
Exploits0
Total number of security vulnerabilities248