SB2023121338 - Inclusion of sensitive information in log files in Elastic Enterprise Search
Published: December 13, 2023
Security Bulletin ID
SB2023121338
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Information disclosure
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Inclusion of sensitive information in log files (CVE-ID: CVE-2023-49923)
The vulnerability allows a remote user to gain access to sensitive information.
The vulnerability exists due to the Documents API of App Search logged the raw contents of indexed
documents at INFO log level. Depending on the contents of such
documents, this could lead to the insertion of sensitive or private
information in the App Search logs. A remote user can view the log files and gain access to sensitive information.
Remediation
Install update from vendor's website.