| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-49922 | Beats Insertion of Sensitive Information into Log File | Elastic | Beats | Medium | 6.8 | 2023-12-12 18:23:20 | Deep Dive |
| CVE-2023-49923 | Enterprise Search Insertion of Sensitive Information into Log File | Elastic | Enterprise Search | Medium | 6.8 | 2023-12-12 17:53:42 | Deep Dive |
| CVE-2023-46674 | Elasticsearch-hadoop Unsafe Deserialization | Elastic | Elasticsearch-Hadoop | Medium | 6.0 | 2023-12-05 17:21:59 | Deep Dive |
| CVE-2023-46673 | Elasticsearch 安全漏洞 | Elastic | Elasticsearch | Medium | 6.5 | 2023-11-22 09:27:10 | Deep Dive |
| CVE-2021-37937 | Elasticsearch privilege escalation | Elastic | Elasticsearch | Medium | 5.9 | 2023-11-22 01:45:21 | Deep Dive |
| CVE-2021-37942 | APM Java Agent Local Privilege Escalation | Elastic | Elastic APM Java Agent | High | 7.0 | 2023-11-22 01:33:49 | Deep Dive |
| CVE-2021-22143 | Elastic APM .NET Agent information disclosure | Elastic | Elastic APM .NET Agent | Low | 2.1 | 2023-11-22 01:21:59 | Deep Dive |
| CVE-2021-22142 | Kibana Reporting vulnerabilities | Elastic | Kibana | Medium | 6.6 | 2023-11-22 01:00:26 | Deep Dive |
| CVE-2021-22151 | Kibana path traversal issue | Elastic | Kibana | Low | 3.1 | 2023-11-22 00:36:51 | Deep Dive |
| CVE-2021-22150 | Kibana code execution issue | Elastic | Kibana | Medium | 6.6 | 2023-11-22 00:30:56 | Deep Dive |
| CVE-2023-46672 | Logstash Insertion of Sensitive Information into Log File | Elastic | Logstash | High | 8.4 | 2023-11-15 08:05:27 | Deep Dive |
| CVE-2023-31416 | Elastic Cloud on Kubernetes (ECK) secret token configuration issue | Elastic | Elastic Cloud on Kubernetes | Medium | 5.3 | 2023-10-26 18:46:22 | Deep Dive |
| CVE-2023-31417 | Elasticsearch Insertion of sensitive information in audit logs | Elastic | Elasticsearch | Medium | 4.1 | 2023-10-26 17:47:37 | Deep Dive |
| CVE-2023-31418 | Elasticsearch uncontrolled resource consumption | Elastic | Elasticsearch | High | 7.5 | 2023-10-26 17:36:43 | Deep Dive |
| CVE-2023-31419 | Elasticsearch StackOverflow vulnerability | Elastic | Elasticsearch | Medium | 6.5 | 2023-10-26 17:06:14 | Deep Dive |
| CVE-2023-46666 | Elastic Sharepoint Online Python Connector Improper Access Control | Elastic | Elastic Sharepoint Online Python Connector | Medium | 5.3 | 2023-10-26 16:16:11 | Deep Dive |
| CVE-2023-31421 | Beats, Elastic Agent, APM Server, and Fleet Server Improper Certificate Validation issue | Elastic | Beats | Medium | 5.9 | 2023-10-26 03:10:53 | Deep Dive |
| CVE-2023-31422 | Kibana Insertion of Sensitive Information into Log File | Elastic | Kibana | Critical | 9.0 | 2023-10-26 01:43:55 | Deep Dive |
| CVE-2023-46667 | Fleet Server Insertion of Sensitive Information into Log File | Elastic | Fleet Server | High | 8.1 | 2023-10-26 00:59:37 | Deep Dive |
| CVE-2023-46668 | Elastic Endpoint Insertion of Sensitive Information into Log File | Elastic | Endpoint | Medium | 4.6 | 2023-10-25 23:59:13 | Deep Dive |