Search

Find a vulnerability

Search criteria

    3 vulnerabilities found for Enterprise Search by Elastic

    CERTFR-2025-AVI-0738

    Vulnerability from certfr_avis - Published: 2025-08-29 - Updated: 2025-08-29

    De multiples vulnérabilités ont été découvertes dans les produits Elastic. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Elastic Elasticsearch Elasticsearch versions 9.0.x antérieures à 9.0.6
    Elastic Enterprise Search Enterprise Search versions 8.x antérieures à 8.18.6
    Elastic Enterprise Search Enterprise Search versions 8.19.x antérieures à 8.19.3
    Elastic Elasticsearch Elasticsearch versions 8.18.x antérieures à 8.18.6
    Elastic Elasticsearch Elasticsearch versions 9.1.x antérieures à 9.1.3
    Elastic Elasticsearch Elasticsearch versions 8.19.x antérieures à 8.19.3
    Elastic Kibana Kibana versions 9.1.x antérieures à 9.1.3
    Elastic Kibana Kibana versions 9.0.x antérieures à 9.0.6
    References
    Bulletin de sécurité Elastic ESA-2025-15 2025-08-28 vendor-advisory
    Bulletin de sécurité Elastic ESA-2025-14 2025-08-28 vendor-advisory
    Bulletin de sécurité Elastic ESA-2025-13 2025-08-28 vendor-advisory

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "Elasticsearch versions 9.0.x ant\u00e9rieures \u00e0 9.0.6",
          "product": {
            "name": "Elasticsearch",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Enterprise Search versions 8.x ant\u00e9rieures \u00e0 8.18.6",
          "product": {
            "name": "Enterprise Search",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Enterprise Search versions 8.19.x ant\u00e9rieures \u00e0 8.19.3",
          "product": {
            "name": "Enterprise Search",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Elasticsearch versions 8.18.x ant\u00e9rieures \u00e0 8.18.6",
          "product": {
            "name": "Elasticsearch",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Elasticsearch versions 9.1.x ant\u00e9rieures \u00e0 9.1.3",
          "product": {
            "name": "Elasticsearch",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Elasticsearch versions 8.19.x ant\u00e9rieures \u00e0 8.19.3",
          "product": {
            "name": "Elasticsearch",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Kibana versions 9.1.x ant\u00e9rieures \u00e0 9.1.3",
          "product": {
            "name": "Kibana",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        },
        {
          "description": "Kibana versions 9.0.x ant\u00e9rieures \u00e0 9.0.6",
          "product": {
            "name": "Kibana",
            "vendor": {
              "name": "Elastic",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2025-54988",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54988"
        },
        {
          "name": "CVE-2025-25010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-25010"
        }
      ],
      "initial_release_date": "2025-08-29T00:00:00",
      "last_revision_date": "2025-08-29T00:00:00",
      "links": [],
      "reference": "CERTFR-2025-AVI-0738",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2025-08-29T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Elastic. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Elastic",
      "vendor_advisories": [
        {
          "published_at": "2025-08-28",
          "title": "Bulletin de s\u00e9curit\u00e9 Elastic ESA-2025-15",
          "url": "https://discuss.elastic.co/t/enterprise-search-8-18-6-8-19-3-security-update-esa-2025-15-cve-2025-54988/381428"
        },
        {
          "published_at": "2025-08-28",
          "title": "Bulletin de s\u00e9curit\u00e9 Elastic ESA-2025-14",
          "url": "https://discuss.elastic.co/t/elasticsearch-8-18-6-8-19-3-9-0-6-and-9-1-3-security-update-esa-2025-14-cve-2025-54988/381427"
        },
        {
          "published_at": "2025-08-28",
          "title": "Bulletin de s\u00e9curit\u00e9 Elastic ESA-2025-13",
          "url": "https://discuss.elastic.co/t/kibana-9-0-6-9-1-3-security-update-esa-2025-13/381426"
        }
      ]
    }

    CVE-2023-49923 (GCVE-0-2023-49923)

    Vulnerability from nvd – Published: 2023-12-12 17:53 – Updated: 2025-05-24 10:23
    VLAI
    Title
    Enterprise Search Insertion of Sensitive Information into Log File
    Summary
    An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion of sensitive or private information in the App Search logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by changing the log level at which these are logged to DEBUG, which is disabled by default.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    Elastic Enterprise Search Affected: 7.0.0 , < 7.17.16 (semver)
    Affected: 8.0.0 , < 8.11.2 (semver)
    Create a notification for this product.
    Date Public
    2023-12-12 17:06
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T22:09:49.570Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://discuss.elastic.co/t/enterprise-search-8-11-2-7-17-16-security-update-esa-2023-31/349181"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.elastic.co/community/security"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-49923",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-24T10:23:20.396975Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-24T10:23:40.732Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Enterprise Search",
              "vendor": "Elastic",
              "versions": [
                {
                  "lessThan": "7.17.16",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "8.11.2",
                  "status": "affected",
                  "version": "8.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2023-12-12T17:06:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": " An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion of sensitive or private information in the App Search logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by changing the log level at which these are logged to DEBUG, which is disabled by default."
                }
              ],
              "value": " An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion of sensitive or private information in the App Search logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by changing the log level at which these are logged to DEBUG, which is disabled by default."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532: Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-12T17:53:42.091Z",
            "orgId": "271b6943-45a9-4f3a-ab4e-976f3fa05b5a",
            "shortName": "elastic"
          },
          "references": [
            {
              "url": "https://discuss.elastic.co/t/enterprise-search-8-11-2-7-17-16-security-update-esa-2023-31/349181"
            },
            {
              "url": "https://www.elastic.co/community/security"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Enterprise Search Insertion of Sensitive Information into Log File",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "271b6943-45a9-4f3a-ab4e-976f3fa05b5a",
        "assignerShortName": "elastic",
        "cveId": "CVE-2023-49923",
        "datePublished": "2023-12-12T17:53:42.091Z",
        "dateReserved": "2023-12-02T16:06:57.310Z",
        "dateUpdated": "2025-05-24T10:23:40.732Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-49923 (GCVE-0-2023-49923)

    Vulnerability from cvelistv5 – Published: 2023-12-12 17:53 – Updated: 2025-05-24 10:23
    VLAI
    Title
    Enterprise Search Insertion of Sensitive Information into Log File
    Summary
    An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion of sensitive or private information in the App Search logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by changing the log level at which these are logged to DEBUG, which is disabled by default.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    Elastic Enterprise Search Affected: 7.0.0 , < 7.17.16 (semver)
    Affected: 8.0.0 , < 8.11.2 (semver)
    Create a notification for this product.
    Date Public
    2023-12-12 17:06
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T22:09:49.570Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://discuss.elastic.co/t/enterprise-search-8-11-2-7-17-16-security-update-esa-2023-31/349181"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.elastic.co/community/security"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-49923",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-24T10:23:20.396975Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-05-24T10:23:40.732Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Enterprise Search",
              "vendor": "Elastic",
              "versions": [
                {
                  "lessThan": "7.17.16",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "8.11.2",
                  "status": "affected",
                  "version": "8.0.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2023-12-12T17:06:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": " An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion of sensitive or private information in the App Search logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by changing the log level at which these are logged to DEBUG, which is disabled by default."
                }
              ],
              "value": " An issue was discovered by Elastic whereby the Documents API of App Search logged the raw contents of indexed documents at INFO log level. Depending on the contents of such documents, this could lead to the insertion of sensitive or private information in the App Search logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by changing the log level at which these are logged to DEBUG, which is disabled by default."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532: Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-12T17:53:42.091Z",
            "orgId": "271b6943-45a9-4f3a-ab4e-976f3fa05b5a",
            "shortName": "elastic"
          },
          "references": [
            {
              "url": "https://discuss.elastic.co/t/enterprise-search-8-11-2-7-17-16-security-update-esa-2023-31/349181"
            },
            {
              "url": "https://www.elastic.co/community/security"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Enterprise Search Insertion of Sensitive Information into Log File",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "271b6943-45a9-4f3a-ab4e-976f3fa05b5a",
        "assignerShortName": "elastic",
        "cveId": "CVE-2023-49923",
        "datePublished": "2023-12-12T17:53:42.091Z",
        "dateReserved": "2023-12-02T16:06:57.310Z",
        "dateUpdated": "2025-05-24T10:23:40.732Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }