Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2018-3826

Опубликовано: 19 сент. 2018
Источник: debian
EPSS Низкий

Описание

In Elasticsearch versions 6.0.0-beta1 to 6.2.4 a disclosure flaw was found in the _snapshot API. When the access_key and security_key parameters are set using the _snapshot API they can be exposed as plain text by users able to query the _snapshot API.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
elasticsearchremovedpackage

EPSS

Процентиль: 60%
0.004
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2018-3826

CVSS3: 6.5
ubuntu
больше 7 лет назад

In Elasticsearch versions 6.0.0-beta1 to 6.2.4 a disclosure flaw was found in the _snapshot API. When the access_key and security_key parameters are set using the _snapshot API they can be exposed as plain text by users able to query the _snapshot API.

nvd логотип

CVE-2018-3826

CVSS3: 6.5
nvd
больше 7 лет назад

In Elasticsearch versions 6.0.0-beta1 to 6.2.4 a disclosure flaw was found in the _snapshot API. When the access_key and security_key parameters are set using the _snapshot API they can be exposed as plain text by users able to query the _snapshot API.

github логотип

GHSA-qq5c-fj9j-h9xv

CVSS3: 6.5
github
больше 3 лет назад

In Elasticsearch versions 6.0.0-beta1 to 6.2.4 a disclosure flaw was found in the _snapshot API. When the access_key and security_key parameters are set using the _snapshot API they can be exposed as plain text by users able to query the _snapshot API.

EPSS

Процентиль: 60%
0.004
Низкий