Vigilance Vulnerability Alerts - Elasticsearch: information disclosure via Certutil Private Key, analyzed on 31/07/2024
September 2024 by Vigilance.fr
An attacker can bypass access restrictions to data of Elasticsearch, via Certutil Private Key, in order to read sensitive information.
Plus d'information sur : https://vigilance.fr/vulnerability/Elasticsearch-information-disclosure-via-Certutil-Private-Key-44844