Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2023-31416
- EPSS 0.15%
- Published 26.10.2023 19:15:45
- Last modified 21.11.2024 08:01:49
Secret token configuration is never applied when using ECK <2.8 with APM Server >=8.0. This could lead to anonymous requests to an APM Server being accepted and the data ingested into this APM deployment.
7.5
CVE-2020-7010
- EPSS 0.35%
- Published 03.06.2020 18:15:22
- Last modified 21.11.2024 05:36:29
Elastic Cloud on Kubernetes (ECK) versions prior to 1.1.0 generate passwords using a weak random number generator. If an attacker is able to determine when the current Elastic Stack cluster was deployed they may be able to more easily brute force the...
1