Lucene search
K
ElasticRecent

248 matches found

Elastic
Elastic
added 2023/05/02 4:1 p.m.7 views

Elastic Stack 8.7.0, 7.17.10 Security Updates

Filebeat Information Exposure ESA-2023-04 A flaw was discovered in the Filebeat httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled. Affected Versions: All filebeat versions through 7.17.9 and 8.6....

6.5CVSS5.8AI score0.00806EPSS
Exploits2
Elastic
Elastic
added 2023/02/16 10:56 p.m.7 views

Kibana 7.17.9 and 8.6.2 Security Update

Kibana open redirect issue ESA-2023-03 An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL. Affected Versions: Kibana Versions 7.0.0 through 7.17.8 and 8.0.0 through 8.6.1 Solutions and...

6.1CVSS6.3AI score0.00513EPSS
Exploits0
Elastic
Elastic
added 2023/02/03 2:30 p.m.10 views

Elastic 7.17.9, 8.5.0 and 8.6.1 Security Update

Kibana authenticated Denial of Service issue ESA-2023-02 A flawCVE-2022-38900 was discovered in one of Kibana’s third party dependencies, that could allow an authenticated user to to perform a request that crashes the Kibana server process. Affected Versions: Kibana Versions 7.0.0 through 7.17.8...

7.8CVSS6.8AI score0.24928EPSS
Exploits1
Elastic
Elastic
added 2023/01/23 5:34 p.m.7 views

Endpoint Security 8.4.0/7.17.7 and Endgame 3.62.3 Security Update

Elastic Endpoint Security Local Privilege Escalation issue ESA-2022-13 An issue was discovered in the quarantine feature of Elastic Endpoint Security and Elastic Endgame for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account. Affected...

7.8CVSS6.9AI score0.00269EPSS
Exploits0
Elastic
Elastic
added 2023/01/23 5:30 p.m.8 views

Endpoint Security 8.4.1 Security Update

Elastic Endpoint Security Local Privilege Escalation issue ESA-2022-14 An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to elevate their privileges to those of the LocalSystem account. Affected Versions: Version 8.4.0...

7.8CVSS6.8AI score0.00283EPSS
Exploits0
Elastic
Elastic
added 2022/12/09 7:18 p.m.7 views

Kibana 7.17.8 and 8.5.0 Security Update

Update Log 2022-12-23 : Updated impact section with additional details. 2023-01-09 : Updated impact section to include RHEL 2023-01-23 : Updated impact section with additional details. Updated Solutions and Mitigations section with new mitigation option. Updated Affected Versions section. Kibana...

8.8CVSS8.8AI score0.1372EPSS
Exploits2
Elastic
Elastic
added 2022/11/02 6:41 p.m.7 views

Elastic Security Statement for OpenSSL CVE-2022-3786 and CVE-2022-3602, OpenSSL version 3.0.7

Elastic Products are not affected by this issue. On Oct 25, 2022, Elastic became aware of the Forthcoming OpenSSL 3.0.7 Release announcement, which was made available on Nov 1, 2022. The security issues addressed in this release do not affect OpenSSL versions before 3.0. Elastic has performed an...

7.5CVSS8.6AI score0.92488EPSS
Exploits6
Elastic
Elastic
added 2022/09/28 4:15 a.m.10 views

Elastic Cloud Enterprise 3.1.1 Security Update

Elastic Cloud Enterprise Sensitive information disclosure issue ESA-2022-11 A flaw was discovered in ECE before 3.1.1 that could lead to the disclosure of the SAML signing private key used for the RBAC features, in deployment logs in the Logging and Monitoring cluster. Affected Versions: Elastic...

5.3CVSS6.2AI score0.00532EPSS
Exploits0
Elastic
Elastic
added 2022/08/24 3:42 p.m.9 views

Elastic Cloud Enterprise 3.4.0 Security Update

Elastic Cloud Enterprise Sensitive information disclosure issue ESA-2022-10 A flaw was discovered in ECE before 3.4.0 that might lead to the disclosure of sensitive information such as user passwords and Elasticsearch keystore settings values in logs such as the audit log or deployment logs in th...

6.5CVSS6.2AI score0.00675EPSS
Exploits0
Elastic
Elastic
added 2022/08/24 3:7 p.m.8 views

Elastic Stack 8.4.0, 7.17.6 Security Statement

Elastic Statement for Oracle July Critical Patch Update CVE-2022-21540, CVE-2022-21541, CVE-2022-21549, CVE-2022-25647, CVE-2022-34169 Summary : Oracle released their July Critical Patch Update for Java SE which contains 5 CVEs. Elastic has analyzed the flaws described by these CVEs and the...

7.7CVSS8.4AI score0.17673EPSS
Exploits2
Elastic
Elastic
added 2022/06/30 8:32 p.m.9 views

Elastic 8.3.1, 8.3.0, and 7.17.5 Security Update

Kibana cross-site-scripting XSS issue ESA-2022-08 A cross-site-scripting XSS vulnerability was discovered in the Vega Charts Kibana integration which could allow arbitrary JavaScript to be executed in a victim’s browser. Affected Versions: Versions 7.0.0 through 7.17.4 and 8.0.0 through 8.2.3...

7.8CVSS6.7AI score0.00777EPSS
Exploits0
Elastic
Elastic
added 2022/05/24 4:55 p.m.8 views

Elastic Stack 7.17.4 and 8.2.1 Security Update

Elastic Stack update for CVE-2022-21449 Java vulnerability in Elliptic Curve Digital Signature Algorithm ECDSA ESA-2022-06 A vulnerability CVE-2022-21449 affecting the implementation of Elliptic Curve Digital Signing Algorithm ECDSA based signatures verification in Java JDK versions 15 and later...

7.5CVSS7.7AI score0.48235EPSS
Exploits6
Elastic
Elastic
added 2022/04/20 2:20 p.m.9 views

Kibana 7.17.3 and 8.1.3 Security Update

Kibana Exposure of Sensitive Information ESA-2022-05 A vulnerability in Kibana could expose sensitive information related to Elastic Stack monitoring in the Kibana page source. Elastic Stack monitoring features provide a way to keep a pulse on the health and performance of your Elasticsearch...

5.3CVSS5.7AI score0.00888EPSS
Exploits0
Elastic
Elastic
added 2022/02/28 9:24 p.m.10 views

Elastic Stack 7.17.1 Security Update

Elasticsearch privilege escalation issue ESA-2022-02 A flaw was discovered in elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “” index permissions access to this...

6.1CVSS5.2AI score0.00909EPSS
Exploits0
Elastic
Elastic
added 2022/02/03 5:34 p.m.8 views

Kibana 7.17.0 Security Update

Kibana Cross-site scripting issue ESA-2022-01 An XSS vulnerability was found in Kibana index patterns. Using this vulnerability, an authenticated user with permissions to create index patterns can inject malicious javascript into the index pattern which could execute against other users. Affected...

5.4CVSS6AI score0.00527EPSS
Exploits0
Elastic
Elastic
added 2021/12/17 5:5 p.m.13 views

Logstash 5.0.0-6.8.20 and 7.0.0-7.16.0: Log4j CVE-2021-44228, CVE-2021-45046 remediation

Note — These instructions only apply if you are running Logstash 5.0.0 - 6.8.20, or 7.0.0 - 7.16.0. If you are running an older version of Logstash, or a version of Logstash = 6.8.21 in the 6.x series or = 7.16.1 in the 7.x series, these instructions do not apply. Please follow the guidance in ma...

10CVSS7.3AI score0.99999EPSS
Exploits353
Elastic
Elastic
added 2021/12/15 10:21 p.m.11 views

Elasticsearch 5.0.0-5.6.10 and 6.0.0-6.3.2: Log4j CVE-2021-44228, CVE-2021-45046 remediation

Note — If you are not running Elasticsearch 5.0.0-5.6.10 or 6.0.0-6.3.2, these instructions do not apply. Please follow the guidance in themain announcement. Instructions for removing JndiLookup from the log4j-core JAR file​ These instructions only apply to users running Elasticsearch versions...

10CVSS7.6AI score0.99999EPSS
Exploits353
Elastic
Elastic
added 2021/12/10 9:42 p.m.11 views

Apache Log4j2 Remote Code Execution (RCE) Vulnerability - CVE-2021-44228 - ESA-2021-31

Subject: Apache Log4j2 Vulnerability - CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, CVE-2021-44832 - ESA-2021-31 ​​Note - We will update this announcement with new details as they emerge from our analysis. Please check back periodically. Update Log Dec 16, 2021 - 04:20 UTC - Update Summary: EC...

10CVSS8.8AI score0.99999EPSS
Exploits358
Elastic
Elastic
added 2021/12/09 5:25 p.m.7 views

APM Java Agent Security Update

APM Java Agent Local Privilege Escalation issue ESA-2021-30 A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious plugin to an application running the APM Java agent. By using this vulnerability, an attacker could execute code at...

7.8CVSS7.3AI score0.00249EPSS
Exploits0
Elastic
Elastic
added 2021/12/07 5:0 p.m.8 views

Enterprise Search 7.16.0 Security Update

Enterprise Search Information Disclosure issue ESA-2021-28 An information disclosure via GET request server-side request forgery vulnerability was discovered with the Workplace Search Github Enterprise Server integration. Using this vulnerability, a malicious Workplace Search admin could use the...

6.8CVSS6.1AI score0.00849EPSS
Exploits0
Elastic
Elastic
added 2021/11/18 5:41 p.m.11 views

APM Java Agent Security Update

APM Java Agent Local Privilege Escalation issue ESA-2021-29 A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious file to an application running with the APM Java agent. Using this vector, a malicious or compromised user account...

7.8CVSS7.1AI score0.00208EPSS
Exploits0
Elastic
Elastic
added 2021/11/10 7:18 p.m.10 views

Kibana 7.15.2 Security Update

Kibana Path Traversal issue ESA-2021-26 It was discovered that on Windows operating systems specifically, Kibana was not validating a user supplied path, which would load .pbf files. Because of this, a malicious user could arbitrarily traverse the Kibana host to load internal files ending in the...

4.3CVSS6.3AI score0.00697EPSS
Exploits0
Elastic
Elastic
added 2021/09/01 4:10 p.m.6 views

Elastic Stack 7.14.1 Security Update

Kibana code execution issue ESA-2021-21 It was discovered that a user with fleet admin permissions could upload a malicious package. Due to using an older version of the js-yaml library, this package would be loaded in an insecure manner, allowing an attacker to execute commands on the kibana...

9.8CVSS8AI score0.21952EPSS
Exploits3
Elastic
Elastic
added 2021/08/03 3:44 p.m.9 views

Elastic Stack 7.14.0 Security Update

Elasticsearch Document/Field Level Security issue ESA-2021-18 A flaw was discovered in Elasticsearch where document and field level security was not applied to searchable snapshots. This could lead to an authenticated user gaining access to information that they are unauthorized to view. Affected...

8.8CVSS6.3AI score0.01037EPSS
Exploits0
Elastic
Elastic
added 2021/07/20 3:17 p.m.9 views

Elastic Cloud Enterprise security update

Elastic Cloud Enterprise security update ESA-2021-17 Elastic Cloud Enterprise has the Elasticsearch “anonymous” user enabled by default in deployed clusters. While in the default setting the anonymous user has no permissions and is unable to successfully query any Elasticsearch APIs, an attacker...

7.5CVSS7AI score0.27788EPSS
Exploits6
Elastic
Elastic
added 2021/07/20 3:14 p.m.11 views

Elasticsearch 7.13.4 Security Update

Elasticsearch memory disclosure issue ESA-2021-16 A memory disclosure vulnerability was identified in Elasticsearch’s error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing...

6.5CVSS7.8AI score0.76249EPSS
Exploits6
Elastic
Elastic
added 2021/07/07 5:23 p.m.10 views

Elasticsearch 7.13.3 and 6.8.17 Security Update

Elasticsearch Denial of Service issue ESA-2021-15 An uncontrolled recursion vulnerability that could lead to a denial of service attack was identified in the Elasticsearch Grok parser. A user with the ability to submit arbitrary queries to Elasticsearch could create a malicious Grok query that wi...

6.5CVSS6.8AI score0.0166EPSS
Exploits0
Elastic
Elastic
added 2021/06/01 5:42 p.m.12 views

Elastic APM .NET Agent 1.10.0 Security Update

Elastic APM .NET Agent information disclosure ESA-2021-14 The Elastic APM .NET Agent can leak sensitive HTTP header information when logging the details during an application error. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM serve...

4.3CVSS6.3AI score0.00611EPSS
Exploits0
Elastic
Elastic
added 2021/05/25 3:17 p.m.9 views

Elastic Stack 7.13.0 and 6.8.16 Security Update

Kibana url redirection flaw ESA-2021-12 An open redirect flaw was found in Kibana versions before 7.13.0 and 6.8.16. If a logged in user visits a maliciously crafted URL, it could result in Kibana redirecting the user to an arbitrary website. Affected Versions: All versions of Kibana before 7.13....

8.8CVSS7.2AI score0.01009EPSS
Exploits0
Elastic
Elastic
added 2021/04/27 7:28 p.m.7 views

7.12.1 Security Update

Kibana denial of service issue ESA-2021-10 A denial of service vulnerability was found in the Kibana webhook actions due to a lack of timeout or a limit on the request size. An attacker with permissions to create webhook actions could drain the Kibana host connection pool, making Kibana unavailab...

7.5CVSS6.9AI score0.0127EPSS
Exploits0
Elastic
Elastic
added 2021/03/23 5:40 p.m.7 views

Elastic Stack 7.12.0 and 6.8.15 Security Update

Elasticsearch Suggester & Profile API information disclosure flaw ESA-2021-06 A document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document leve...

5.3CVSS6.9AI score0.01162EPSS
Exploits0
Elastic
Elastic
added 2021/03/01 4:55 p.m.9 views

Elastic Stack 7.11.0 Security Update

Elasticsearch field disclosure flaw ESA-2021-05 A document disclosure flaw was found in Elasticsearch when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents that have...

4.3CVSS7.3AI score0.01112EPSS
Exploits0
Elastic
Elastic
added 2021/02/10 5:50 p.m.9 views

Elastic Stack 7.11.0 and 6.8.14 Security Update

Elasticsearch information disclosure ESA-2021-03 Elasticsearch versions before 7.10.0 and 6.8.14 have an information disclosure issue when audit logging and the emitrequestbody option is enabled. The Elasticsearch audit log could contain sensitive information such as password hashes or...

8.7CVSS5.5AI score0.01362EPSS
Exploits0
Elastic
Elastic
added 2021/02/04 2:19 p.m.7 views

Elastic APM Agent for Go 1.11.0 Security Update

Elastic APM Agent for Go information disclosure ESA-2021-02 The Elastic APM agent for Go can leak sensitive HTTP header information when logging the details during an application panic. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM...

2.7CVSS6.3AI score0.00521EPSS
Exploits0
Elastic
Elastic
added 2021/01/14 6:9 p.m.8 views

Elasticsearch 7.10.2 Security Update

Elasticsearch authorization-header storage issue ESA-2021-01 An information disclosure flaw was found in the Elasticsearch async search API. Users who execute an async search will store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive reques...

4.8CVSS7AI score0.01241EPSS
Exploits0
Elastic
Elastic
added 2020/12/09 4:24 p.m.5 views

Beats 7.10.1 Security Update

Beats Denial of Service issue ESA-2020-16 A denial of service flaw when parsing malformed TLS public keys was discovered in Go, the language used to implement Beats. If Beats is configured to listen for Syslog over TLS, or if Beats is making outbound connections over HTTPS, a remote attacker coul...

7.5CVSS5.1AI score0.03813EPSS
Exploits0
Elastic
Elastic
added 2020/10/22 3:34 p.m.7 views

Elastic Stack 7.9.3 and 6.8.13 Security Update

Elasticsearch field disclosure flaw ESA-2020-13 A document disclosure flaw was found in Elasticsearch when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex queries. This could result in the search disclosing the...

7.4CVSS6.2AI score0.00999EPSS
Exploits1
Elastic
Elastic
added 2020/08/18 3:16 p.m.7 views

Enterprise Search 7.9.0 security update

Enterprise Search credential exposure flaw ESA-2020-11 Elastic Enterprise Search versions before 7.9.0 contain a credential exposure flaw in the App Search interface. If a user is given the ‘developer’ role, they will be able to view the administrator API credentials. These credentials could allo...

8.8CVSS6.6AI score0.0109EPSS
Exploits0
Elastic
Elastic
added 2020/08/18 3:11 p.m.8 views

Elastic Stack 7.9.0 and 6.8.12 Security Update

Elasticsearch field disclosure flaw ESA-2020-12 A field disclosure flaw was found in Elasticsearch when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This...

6.5CVSS7.1AI score0.01204EPSS
Exploits0
Elastic
Elastic
added 2020/07/27 5:9 p.m.8 views

Elastic Stack 6.8.11 and 7.8.1 security update

Kibana regular expression denial of service flaw ESA-2020-09 Kibana versions before 6.8.11 and 7.8.1 contain a denial of service DoS flaw in Timelion. An attacker can construct a URL that when viewed by a Kibana user can lead to the Kibana process consuming large amounts of CPU and becoming...

6.7CVSS8.2AI score0.0122EPSS
Exploits0
Elastic
Elastic
added 2020/06/03 2:16 p.m.8 views

Elastic Stack 7.7.1 and 6.8.10 Security Update

Kibana cross site scripting XSS issue ESA-2020-08 The TSVB visualization in Kibana contains a stored XSS flaw. An attacker who is able to edit or create a TSVB visualization could allow the attacker to obtain sensitive information from, or perform destructive actions, on behalf of Kibana users wh...

5.4CVSS5.4AI score0.00779EPSS
Exploits0
Elastic
Elastic
added 2020/06/03 2:14 p.m.8 views

Elastic Stack 6.8.9 and 7.7.0 security update

Kibana upgrade assistant prototype pollution flaw ESA-2020-05 Kibana versions between 6.7.0 to 6.8.8 and 7.0.0 to 7.6.2 contain a prototype pollution flaw in the Upgrade Assistant. An authenticated attacker with privileges to write to the Kibana index could insert data that would cause Kibana to...

8.8CVSS8AI score0.18211EPSS
Exploits1
Elastic
Elastic
added 2020/05/13 7:40 p.m.10 views

Enterprise Search 7.7.0 security update

Elastic App Search Cross Site Scripting flaw ESA-2020-04 Elastic App Search versions before 7.7.0 contain a cross site scripting XSS flaw when displaying document URLs in the Reference UI. If the Reference UI injects a URL into a result, that URL will be rendered by the web browser. If an attacke...

6.1CVSS5.8AI score0.00983EPSS
Exploits0
Elastic
Elastic
added 2020/04/28 5:23 p.m.9 views

Elastic Cloud on Kubernetes 1.1.0 security update

Elastic Cloud on Kubernetes insecure password generation ESA-2020-03 Elastic Cloud on Kubernetes ECK versions prior to 1.1.0 generate passwords using a weak random number generator. If an attacker is able to determine when the current Elastic Stack cluster was deployed they may be able to more...

7.5CVSS7.1AI score0.01439EPSS
Exploits0
Elastic
Elastic
added 2020/03/31 5:8 p.m.8 views

Elastic Stack 6.8.8 and 7.6.2 security update

Elasticsearch API key privilege escalation ESA-2020-02 Elasticsearch versions from 6.7.0 to 6.8.7 and 7.0.0 to 7.6.1 contain a privilege escalation flaw if an attacker is able to create API keys. An attacker who is able to generate an API key can perform a series of steps that result in an API ke...

8.8CVSS7.2AI score0.016EPSS
Exploits0
Elastic
Elastic
added 2020/03/04 6:1 p.m.10 views

Elastic Stack 6.8.7 and 7.6.1 security update

Kibana Node.js security flaws ESA-2020-01 The version of Node.js shipped in all versions of Kibana prior to 7.6.1 and 6.8.7 contain three security flaws. CVE-2019-15604 describes a Denial of Service DoS flaw in the TLS handling code of Node.js. Successful exploitation of this flaw could result in...

9.8CVSS9.6AI score0.57132EPSS
Exploits2
Elastic
Elastic
added 2019/12/18 7:15 p.m.8 views

Elastic Stack 6.8.6 and 7.5.1 security update

Kibana XSS ESA-2019-17 Kibana versions before 6.8.6 and 7.5.1 contain a cross site scripting XSS flaw in the coordinate and region map visualizations. An attacker with the ability to create coordinate map visualizations could create a malicious visualization. If another Kibana user views that...

5.4CVSS5.6AI score0.00652EPSS
Exploits0
Elastic
Elastic
added 2019/12/02 4:39 p.m.7 views

Elastic Stack 7.5.0 security update

Metricbeat and Filebeat DSA public key panic ESA-2019-15 A denial of service flaw when parsing malformed DSA public keys was discovered in Go, the language used to implement Beats. If Metricbeat or Filebeat are configured to accept incoming TLS connections with client authentication enabled, a...

7.5CVSS9.6AI score0.04693EPSS
Exploits1
Elastic
Elastic
added 2019/10/23 4:7 p.m.11 views

Elastic Stack 7.4.1 security update

Logstash Beats input denial of service flaw ESA-2019-14 A denial of service flaw was found in the Logstash beats input plugin. An unauthenticated user who is able to connect to the port the Logstash beats input could send a specially crafted network packet that would cause Logstash to stop...

7.5CVSS6.7AI score0.0153EPSS
Exploits0
Elastic
Elastic
added 2019/10/23 4:2 p.m.13 views

Elastic Stack 6.8.4 security update

Elasticsearch username disclosure flaw ESA-2019-13 A username disclosure flaw was found in Elasticsearch’s API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm. Affected Versions The following...

7.5CVSS6.5AI score0.02429EPSS
Exploits0
Total number of security vulnerabilities248