CVE-2017-8438Improper Access Control in X-pack Security

CWE-284Improper Access ControlCWE-269Improper Privilege Management3 documents3 sources
Severity
8.8HIGHNVD
EPSS
0.4%
top 38.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Elastic X-pack SecurityElastic X-pack
Timeline
PublishedJun 5
Latest updateMay 13

Description

Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the run_as functionality. This bug prevents transitioning into the specified user specified in a run_as request. If a role has been created using a template that contains the _user properties, the behavior of run_as will be incorrect. Additionally if the run_as user specified does not exist, the transition will not happen.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5elastic/x-pack_security5.0.0 to 5.4.0
NVDelastic/x-pack13 versions+12

Patches

Patch: www.elastic.coPatch: www.elastic.co

🔴Vulnerability Details

2
GHSA
GHSA-c4fv-4x26-f38h: Elastic X-Pack Security versions 52022-05-13
CVEList
CVE-2017-8438: Elastic X-Pack Security versions 52017-06-05
CVE-2017-8438 — Improper Access Control in Elastic | cvebase