Elastic Vulnerabilidad

Cronología

Escribe

Not Defined	18
Cloud Software	5
Programming Language Software	1
Ruby Gem	1

Producto

Elastic Cloud Enterprise	5
Elastic Kibana	4
Elastic Endpoint Security	4
Elastic Code	2
Elastic Enterprise Search	2

Contramedidas

Official Fix	16
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	9

Explotabilidad

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	25

Vector de acceso

Not Defined	0
Physical	0
Local	2
Adjacent	10
Network	13

Autenticación

Not Defined	0
High	1
Low	21
None	3

La interacción del usuario

Not Defined	0
Required	2
None	23

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	2
≤4	1
≤5	3
≤6	7
≤7	4
≤8	3
≤9	5
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	2
≤4	1
≤5	4
≤6	6
≤7	4
≤8	3
≤9	5
≤10	0

VulDB

≤1	0
≤2	0
≤3	2
≤4	4
≤5	6
≤6	6
≤7	1
≤8	1
≤9	5
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	1
≤6	3
≤7	4
≤8	7
≤9	4
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	1
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	5
<2k	13
<5k	7
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	21
<2k	2
<5k	2
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (12): APM Agent (1), APM Java Agent (1), Cloud Enterprise (5), Code (2), Endgame (1), Endpoint Security (4), Enterprise Search (2), Enterprise Search App (2), Filebeat (1), Kibana (4), Stack (1), X-Pack Security (2)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	CTI	EPSS	CVE
2023-09-07	8.8	8.4	Elastic Code SetHostIPv6StaticSettings desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00	0.00000	CVE-2023-41211
2023-05-05	3.4	3.4	Elastic Filebeat httpjson divulgación de información	Desconocido	Not Defined	Not Defined	0.03	0.00043	CVE-2023-31413
2023-05-05	7.1	7.1	Elastic Kibana Uptime/Synthetics escalada de privilegios	Desconocido	Not Defined	Not Defined	0.03	0.00054	CVE-2023-31415
2023-05-05	7.1	7.1	Elastic Kibana Configuration escalada de privilegios	Desconocido	Not Defined	Not Defined	0.03	0.00054	CVE-2023-31414
2023-02-22	5.5	5.5	Elastic Kibana URL Redirect	Desconocido	Not Defined	Not Defined	0.03	0.00046	CVE-2022-38779
2023-02-09	8.3	8.3	Elastic Endpoint Security escalada de privilegios	Desconocido	Not Defined	Not Defined	0.05	0.00043	CVE-2022-38777
2023-02-09	5.8	5.7	Elastic Kibana denegación de servicio	Desconocido	Not Defined	Official Fix	0.03	0.00044	CVE-2022-38778
2023-01-27	8.3	8.3	Elastic Endpoint Security escalada de privilegios	Desconocido	Not Defined	Not Defined	0.00	0.00043	CVE-2022-38775
2023-01-27	8.3	8.3	Elastic Endpoint Security/Endgame escalada de privilegios	Desconocido	Not Defined	Not Defined	0.05	0.00043	CVE-2022-38774
2022-09-29	4.4	4.3	Elastic Cloud Enterprise SAML divulgación de información	Cloud Software	Not Defined	Official Fix	0.04	0.00050	CVE-2022-23716

15 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 15 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!