Vigil@nce - Vigil@nce - Elasticsearch: privilege escalation via Fleet-server Service API Keys, analyzed on 01/09/2021
November 2021 by Vigil@nce
Vigil@nce - An attacker can bypass restrictions via Fleet-server Service API Keys of Elasticsearch, in order to escalate his privileges.
Plus d'information sur : https://vigilance.fr/vulnerability/Elasticsearch-privilege-escalation-via-Fleet-server-Service-API-Keys-36293