CVE-2024-23451 | Elasticsearch up to 8.12.x Remote Cluster Security authorization

Inserito da Angelo Barbosa | Mar 27, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Elasticsearch up to 8.12.x. This issue affects some unknown processing of the component Remote Cluster Security. The manipulation leads to incorrect authorization.

The identification of this vulnerability is CVE-2024-23451. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23451 | Elasticsearch up to 8.12.x Remote Cluster Security authorization

Post correlati

CVE-2024-1029 | Cogites eReserv 7.7.58 tenancyDetail.php Nom cross site scripting

CVE-2024-30620 | Tenda AX1803 1.0.0.1 /goform/AdvSetMacMtuWan fromAdvSetMacMtuWan serviceName stack-based overflow

CVE-2023-6900 | rmountjoy92 DashMachine 0.5-4 /settings/delete_file path traversal

CVE-2023-6419 | Voovi Social Networking Script 1.0 editprofile.php cross site scripting