CVE-2020-7019 — Privilege Context Switching Error in Elasticsearch
CWE-270 — Privilege Context Switching ErrorCWE-269 — Improper Privilege Management11 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 70.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 18
Latest updateMay 24
Description
In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran, the scrolling search can leak fields that should be hidden. This could result in an attacker gaining additional permissions against a restricted index.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6
Affected Packages2 packages
🔴Vulnerability Details
4📋Vendor Advisories
2Red Hat▶
elasticsearch: scrolling search can leak fields that should be hidden allowing access restriction bypass↗2020-08-18
Microsoft▶
In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recentl↗2020-08-11
💬Community
4Bugzilla▶
CVE-2020-7019 python-elasticsearch: elasticsearch: scrolling search can leak fields that should be hidden allowing access restriction bypass [epel-all]↗2020-08-19
Bugzilla▶
CVE-2020-7019 python-elasticsearch: elasticsearch: scrolling search can leak fields that should be hidden allowing access restriction bypass [openstack-rdo]↗2020-08-19
Bugzilla▶
CVE-2020-7019 elasticsearch: scrolling search can leak fields that should be hidden allowing access restriction bypass↗2020-08-19
Bugzilla▶
CVE-2020-7019 python-elasticsearch: elasticsearch: scrolling search can leak fields that should be hidden allowing access restriction bypass [fedora-all]↗2020-08-19