Bug 2254251 (CVE-2023-49921) - CVE-2023-49921 elasticsearch: Insertion of Sensitive Information into Log File
Summary: CVE-2023-49921 elasticsearch: Insertion of Sensitive Information into Log File
Keywords:
Status: NEW
Alias: CVE-2023-49921
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2254252 2254253
Blocks: 2254246
TreeView+ depends on / blocked
 
Reported: 2023-12-12 20:52 UTC by Patrick Del Bello
Modified: 2024-04-05 10:59 UTC (History)
12 users (show)

Fixed In Version:
Doc Type: ---
Doc Text:
A flaw was found in Elasticsearch. Watcher search input is logged in the search query results when using the DEBUG log level, which could lead to excessive logging of unnecessary and unauthorized content.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Patrick Del Bello 2023-12-12 20:52:59 UTC
An issue was discovered by Elastic whereby Watcher search input logged the search query results on DEBUG log level. This could lead to raw contents   of documents stored in Elasticsearch to be printed in logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by removing this excessive logging.

https://discuss.elastic.co/t/elasticsearch-8-11-2-7-17-16-security-update-esa-2023-29/349179


Note You need to log in before you can comment on or make changes to this bug.