CVE-2021-22137Sensitive Information Exposure in Elasticsearch

CWE-200Sensitive Information ExposureCWE-281Improper Preservation of Permissions6 documents5 sources
Severity
5.3MEDIUMNVD
EPSS
0.1%
top 71.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Elastic Elasticsearch
Timeline
PublishedMay 13
Latest updateMay 24

Description

In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain cross-cluster search queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

NVDelastic/elasticsearch7.11.07.11.2+1
CVEListV5elastic/elasticsearchbefore 7.11.2 and 6.8.15

🔴Vulnerability Details

4
OSV
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch2022-05-24
GHSA
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch2022-05-24
CVEList
CVE-2021-22137: In Elasticsearch versions before 72021-05-13
OSV
CVE-2021-22137: In Elasticsearch versions before 72021-05-13

📋Vendor Advisories

1
Red Hat
elasticsearch: Document disclosure flaw when Document or Field Level Security is used2021-03-23
CVE-2021-22137 — Sensitive Information Exposure | cvebase