CVE-2018-3831
published 2018-09-19CVE-2018-3831: Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The…
PriorityP347high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.98%
78.1th percentile
Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such as passwords, tokens, or usernames. This could allow an authenticated Elasticsearch user to improperly view these details.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| elastic | elasticsearch | — | — |
| elastic | elasticsearch | >= 5.6.0 < 5.6.12 | 5.6.12 |
| elastic | elasticsearch | >= 6.0.0 < 6.4.1 | 6.4.1 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
osv·2022-05-13
CVE-2018-3831 [HIGH] Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such as passwords, tokens, or usernames. This could allow an authenticated Elasticsearch user to improperly view these details.
GHSA
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
ghsa·2022-05-13
CVE-2018-3831 [HIGH] CWE-200 Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such as passwords, tokens, or usernames. This could allow an authenticated Elasticsearch user to improperly view these details.
Red Hat
elasticsearch: Information exposure via _cluster/settings API
vendor_redhat·2018-09-18·CVSS 8.8
CVE-2018-3831 [HIGH] CWE-200 elasticsearch: Information exposure via _cluster/settings API
elasticsearch: Information exposure via _cluster/settings API
Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such as passwords, tokens, or usernames. This could allow an authenticated Elasticsearch user to improperly view these details.
Statement: Subscription Asset Manager is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having a security impact Moderate, and is not currently planned to be addressed in future updates.
Package: elasticsearch (Red Hat Decision Manager 7) - Affected
Package: elasticsearch (Red Hat JBoss Fuse
No detection rules found.
No public exploits indexed.
arXiv
Microservice Vulnerability Analysis: A Literature Review with Empirical Insights
arxiv_fulltext·2024-07-31
Microservice Vulnerability Analysis: A Literature Review with Empirical Insights
Microservice Vulnerability Analysis: A Literature Review with Empirical Insights
Raveen Kanishka Jayalath*
University of Adelaide, Australia
[email protected]
Hussain Ahmad* *Authors contributed equally to this work. Corresponding author.
University of Adelaide, Australia
[email protected]
Diksha Goel
CSIRO's Data61, Australia
[email protected]
3cmMuhammad Shuja Syed
3cmSLB, USA
[email protected]
Faheem Ullah
University of Adelaide, Australia
[email protected]
plain
## Abstract
Microservice architectures are revolutionizing both small businesses and large corporations, igniting a new era of innovation with their exceptional advantages in maintainability, reusability, and scalability. However, these benefits come w
Bugzilla
CVE-2018-18498 Mozilla: Integer overflow when calculating buffer sizes for images
bugzilla·2018-12-12·CVSS 9.8
CVE-2018-18498 [CRITICAL] CVE-2018-18498 Mozilla: Integer overflow when calculating buffer sizes for images
CVE-2018-18498 Mozilla: Integer overflow when calculating buffer sizes for images
A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is used instead of the checked value. This leads to a possible out-of-bounds write.
External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2018:3831 https://access.redhat.com/errata/RHSA-2018:3831
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3833 https://access.redhat.com/errata/RHSA-2018:3833
---
Statement:
In general, this flaw be exploited through email in the Thund
Bugzilla
CVE-2018-18494 Mozilla: Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs
bugzilla·2018-12-12·CVSS 6.5
CVE-2018-18494 [MEDIUM] CVE-2018-18494 Mozilla: Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs
CVE-2018-18494 Mozilla: Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript `location` property to cause a redirection to another site using `performance.getEntries()`. This is a same-origin policy violation and could allow for data theft.
External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: James Lee of Kryptos Logic
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2018:3831 https://access.redhat.com/errata/RHSA-2018:3831
---
This issue has been addressed in the f
Bugzilla
CVE-2018-12405 Mozilla: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
bugzilla·2018-12-11·CVSS 9.8
CVE-2018-12405 [CRITICAL] CVE-2018-12405 Mozilla: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
CVE-2018-12405 Mozilla: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code.
External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: Christian Holler, Diego Calleja, Andrew McCreight, Jon Coppeard, Natalia Csoregi, Nicolas B. Pierron, Tyson Smith
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2018:3831 https://access.redhat.com/errata/RHSA-2018:3831
---
Bugzilla
CVE-2018-18492 Mozilla: Use-after-free with select element
bugzilla·2018-12-11·CVSS 9.8
CVE-2018-18492 [CRITICAL] CVE-2018-18492 Mozilla: Use-after-free with select element
CVE-2018-18492 Mozilla: Use-after-free with select element
A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the `select` element in the `options` collection. This results in a potentially exploitable crash.
External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: Nils
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2018:3831 https://access.redhat.com/errata/RHSA-2018:3831
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3833 https://access.redhat.com/errata/RHSA-2018:3833
---
Statement:
In general, this flaw be exp
Bugzilla
CVE-2018-18493 Mozilla: Buffer overflow in accelerated 2D canvas with Skia
bugzilla·2018-12-11·CVSS 9.8
CVE-2018-18493 [CRITICAL] CVE-2018-18493 Mozilla: Buffer overflow in accelerated 2D canvas with Skia
CVE-2018-18493 Mozilla: Buffer overflow in accelerated 2D canvas with Skia
A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due to the use of 32-bit calculations instead of 64-bit. This results in a potentially exploitable crash.
External Reference:
https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: Atte Kettunen
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Via RHSA-2018:3831 https://access.redhat.com/errata/RHSA-2018:3831
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3833 https://access.redhat.com/errata/RHSA-2
Bugzilla
CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API [fedora-all]
bugzilla·2018-09-26·CVSS 8.8
CVE-2018-3831 [HIGH] CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API [fedora-all]
CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple support
Bugzilla
CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API [fedora-all]
bugzilla·2018-09-24·CVSS 8.8
CVE-2018-3831 [HIGH] CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API [fedora-all]
CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple support
Bugzilla
CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API
bugzilla·2018-09-24·CVSS 8.8
CVE-2018-3831 [HIGH] CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API
CVE-2018-3831 elasticsearch: Information exposure via _cluster/settings API
Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such as passwords, tokens, or usernames. This could allow an authenticated Elasticsearch user to improperly view these details.
References:
https://discuss.elastic.co/t/elastic-stack-6-4-1-and-5-6-12-security-update/149035
https://www.elastic.co/community/security
Discussion:
Created elasticsearch tracking bugs for this issue:
Affects: fedora-all [bug 1632454]
---
Created elasticsearch tracking bugs for this issue:
Affects: fedora-all [bug 1632971]
---
Ope
2018-09-19
Published