Количество 5
Количество 5
CVE-2025-37731
Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially crafted client certificates. A malicious actor would need to have such a crafted client certificate signed by a legitimate, trusted Certificate Authority.
CVE-2025-37731
Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially crafted client certificates. A malicious actor would need to have such a crafted client certificate signed by a legitimate, trusted Certificate Authority.
CVE-2025-37731
Elasticsearch Improper Authentication
CVE-2025-37731
Improper Authentication in Elasticsearch PKI realm can lead to user im ...
GHSA-m9gh-789g-q5pv
Elasticsearch PKI Realm Authentication Bypass Vulnerability Allows User Impersonation Through Crafted Client Certificates
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-37731 Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially crafted client certificates. A malicious actor would need to have such a crafted client certificate signed by a legitimate, trusted Certificate Authority. | CVSS3: 6.8 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-37731 Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially crafted client certificates. A malicious actor would need to have such a crafted client certificate signed by a legitimate, trusted Certificate Authority. | CVSS3: 6.8 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-37731 Elasticsearch Improper Authentication | 0% Низкий | около 2 месяцев назад | |
| CVE-2025-37731 Improper Authentication in Elasticsearch PKI realm can lead to user im ... | CVSS3: 6.8 | 0% Низкий | около 2 месяцев назад |
| GHSA-m9gh-789g-q5pv Elasticsearch PKI Realm Authentication Bypass Vulnerability Allows User Impersonation Through Crafted Client Certificates | CVSS3: 6.8 | 0% Низкий | около 2 месяцев назад |
Уязвимостей на страницу