CVE-2024-12539
published 2024-12-17CVE-2024-12539: An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security…
PriorityP337medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
0.39%
31.1th percentile
An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| elastic | elasticsearch | >= 8.16.0 < 8.16.2 | 8.16.2 |
| elastic | elasticsearch | 8.16.0 – 8.16.1 | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv4.06.0MEDIUMCVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv6.0MEDIUM
vendor_redhat6.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Elasticsearch Incorrect Authorization vulnerability
ghsa·2024-12-17
CVE-2024-12539 [MEDIUM] CWE-863 Elasticsearch Incorrect Authorization vulnerability
Elasticsearch Incorrect Authorization vulnerability
An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow.
OSV
CVE-2024-12539: An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level
osv·2024-12-17·CVSS 6.0
CVE-2024-12539 [MEDIUM] CVE-2024-12539: An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level
An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow.
OSV
Elasticsearch Incorrect Authorization vulnerability
osv·2024-12-17
CVE-2024-12539 [MEDIUM] Elasticsearch Incorrect Authorization vulnerability
Elasticsearch Incorrect Authorization vulnerability
An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow.
Red Hat
elasticsearch: improper auth controls can allow circumvention of Document Level Security
vendor_redhat·2024-12-17·CVSS 6.0
CVE-2024-12539 [MEDIUM] CWE-863 elasticsearch: improper auth controls can allow circumvention of Document Level Security
elasticsearch: improper auth controls can allow circumvention of Document Level Security
An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow.
In some versions of Elasticsearch, improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security. This may allow users to access to documents that their roles would normally not allow.
Statement: This issue is specific to versions 8.16.0 and 8.16.1. Red Hat does not ship an affected version of this component.
Package: openshift-logging/fluentd-rhel9 (Logging Subsystem for Red Hat OpenShif
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-12-17
Published