Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Some management operations on data streams are not properly restricted when user does not have the necessary privileges
Vulnerability Description
In Search Guard FLX versions from 3.0.0 up to 4.0.1, there exists an issue which allows users without the necessary privileges to execute some management operations against data streams.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
授权机制不恰当
Vulnerability Title
Search Guard FLX 安全漏洞
Vulnerability Description
Search Guard FLX是德国Search Guard公司的一个加密、认证和授权系统。 Search Guard FLX 3.0.0至4.0.1版本存在安全漏洞,该漏洞源于权限不足的用户可能对数据流执行某些管理操作。
CVSS Information
N/A
Vulnerability Type
N/A