#VU84393 Inclusion of sensitive information in log files in Enterprise Search - CVE-2023-49923
Published: December 13, 2023
Vulnerability identifier: #VU84393
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-49923
CWE-ID: CWE-532
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Enterprise Search
Enterprise Search
Software vendor:
Elastic Stack
Elastic Stack
Description
The vulnerability allows a remote user to gain access to sensitive information.
The vulnerability exists due to the Documents API of App Search logged the raw contents of indexed
documents at INFO log level. Depending on the contents of such
documents, this could lead to the insertion of sensitive or private
information in the App Search logs. A remote user can view the log files and gain access to sensitive information.
Remediation
Install updates from vendor's website.