Elastic Kibana X-Pack CVE-2017-8450 Information Disclosure Vulnerability - Windows
- CVSSv3 Score
- Vulnerability description
Elastic Kibana with X-Pack is prone to an information disclosure vulnerability.
- Risk description
The Flaw is due to a not properly applied document and field level security to multi-search and multi-get requests. Successful exploitation allows users without access to a document and/or field able to access this information.
Update to Elastic Kibana X-Pack version 5.1.2 or later.
- Not available