RSS   Vulnerabilities for 'Azure repository'   RSS

2018-09-19
 
CVE-2018-3827

CWE-255
 

 
A sensitive data disclosure flaw was found in the Elasticsearch repository-azure (formerly elasticsearch-cloud-azure) plugin. When the repository-azure plugin is set to log at TRACE level Azure credentials can be inadvertently logged.

 

 >>> Vendor: Elastic 12 Products
X-pack
Kibana reporting
Elasticsearch
Azure repository
Apm-agent-ruby
Elastic cloud enterprise
Logstash
Elasticsearch x-pack
Kibana x-pack
Logstash x-pack
Winlogbeat
Apm agent


Copyright 2020, cxsecurity.com

 

Back to Top