0.001 Low
EPSS
Percentile
22.7%
elasticsearch is vulnerable to privilege escalation. An attacker can disable the in-built protections on the security index, leading to access to the current index with * index permission.
*
discuss.elastic.co/t/elastic-stack-7-17-1-security-update/298447
github.com/advisories/GHSA-pgq6-ccqj-hpqr
github.com/elastic/elasticsearch/commit/1861e8a19eabf6ab5d67657c36fba7b7698a97e0
github.com/elastic/elasticsearch/pull/84180
security.netapp.com/advisory/ntap-20220729-0003/