exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2019-7619

больше 6 лет назад

Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.

CVSS3: 5.3

EPSS: Низкий

CVE-2019-7619

больше 6 лет назад

Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.

CVSS3: 3.7

EPSS: Низкий

CVE-2019-7619

больше 6 лет назад

Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.

CVSS3: 5.3

EPSS: Низкий

CVE-2019-7619

больше 6 лет назад

Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username ...

CVSS3: 5.3

EPSS: Низкий

GHSA-hxp8-r9g3-grfr

больше 3 лет назад

Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch

CVSS3: 5.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-7619 Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.	CVSS3: 5.3	2% Низкий	больше 6 лет назад
CVE-2019-7619 Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.	CVSS3: 3.7	2% Низкий	больше 6 лет назад
CVE-2019-7619 Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username disclosure flaw was found in the API Key service. An unauthenticated attacker could send a specially crafted request and determine if a username exists in the Elasticsearch native realm.	CVSS3: 5.3	2% Низкий	больше 6 лет назад
CVE-2019-7619 Elasticsearch versions 7.0.0-7.3.2 and 6.7.0-6.8.3 contain a username ...	CVSS3: 5.3	2% Низкий	больше 6 лет назад
GHSA-hxp8-r9g3-grfr Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch	CVSS3: 5.3	2% Низкий	больше 3 лет назад

Уязвимостей на страницу