Описание
In Search Guard FLX versions from 3.1.0 up to 4.0.0 with enterprise modules being disabled, there exists an issue which allows authenticated users to use specially crafted requests to read documents from data streams without having the respective privileges.
EPSS
Процентиль: 8%
0.0003
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 4.3
github
2 месяца назад
In Search Guard FLX versions from 3.1.0 up to 4.0.0 with enterprise modules being disabled, there exists an issue which allows authenticated users to use specially crafted requests to read documents from data streams without having the respective privileges.
EPSS
Процентиль: 8%
0.0003
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-200