Main Vulnerability Database Vulnerabilities #VU50604

#VU50604 Inclusion of Sensitive Information in Log Files in Elasticsearch - CVE-2020-7021

Published: February 11, 2021 / Updated: February 11, 2021

Vulnerability identifier: #VU50604

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2020-7021

CWE-ID: CWE-532

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Elasticsearch

Software vendor:
Elastic Stack

Description

The vulnerability allows a remote administrator to gain access to sensitive information.

The vulnerability exists due to software stores sensitive information into log files, when audit logging and the emit_request_body option is enabled. The Elasticsearch administrator can view the audit log and obtain password hashes or authentication tokens in clear text.

Remediation

Install updates from vendor's website.

External links

https://discuss.elastic.co/t/elastic-stack-7-11-0-and-6-8-14-security-update/263915
https://www.elastic.co/guide/en/elasticsearch/reference/6.8/release-notes-6.8.14.html#release-notes-6.8.14
https://www.elastic.co/community/security#ESA-2021-03

#VU50604 Inclusion of Sensitive Information in Log Files in Elasticsearch - CVE-2020-7021

Description

Remediation

External links

Please verify you're human