Elasticsearch ESA-2018-15

high Nessus Plugin ID 117665

Synopsis

Checks the version of Elasticsearch.

Description

Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such as passwords, tokens, or usernames. This could allow an authenticated Elasticsearch user to improperly view these details.

Solution

Users should upgrade to Elasticsearch version 6.4.1 or 5.6.12. There are no known workarounds for this issue.

See Also

https://www.elastic.co/community/security

Plugin Details

Severity: High

ID: 117665

File Name: elasticsearch_esa_2018_15.nasl

Version: 1.3

Type: remote

Family: CGI abuses

Published: 9/24/2018

Updated: 11/4/2019

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS Score Source: CVE-2018-3831

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:elasticsearch:elasticsearch

Required KB Items: installed_sw/Elasticsearch

Exploit Ease: No known exploits are available

Patch Publication Date: 9/18/2018

Vulnerability Publication Date: 9/18/2018

Reference Information

CVE: CVE-2018-3831