AVG-1638 log

Package elasticsearch
Status Vulnerable
Severity Medium
Type information disclosure
Affected 7.10.1-1
Fixed Unknown
Current 7.10.1-1 [community]
Ticket FS#70137
Created Wed Mar 3 19:08:07 2021
Issue Severity Remote Type Description
CVE-2021-22137 Medium Yes Information disclosure
A document disclosure flaw was found in Elasticsearch versions before 6.8.15 and 7.11.2 when Document or Field Level Security is used. Search queries do not...
CVE-2021-22135 Medium Yes Information disclosure
In Elasticsearch versions before 7.11.2 and 6.8.15, a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and...
CVE-2021-22134 Low Yes Information disclosure
A document disclosure flaw was found in Elasticsearch before version 7.11.0 when Document or Field Level Security is used. Get requests do not properly...