---

CVE-2021-22147 - log back

CVE-2021-22147 edited at 03 Aug 2021 15:57:30
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ A flaw was discovered in Elasticsearch versions 7.11.0 to 7.13.4 where document and field level security was not applied to searchable snapshots. This could lead to an authenticated user gaining access to information that they are unauthorized to view.
References	+ https://discuss.elastic.co/t/elastic-stack-7-14-0-security-update/280344

CVE-2021-22147 created at 03 Aug 2021 15:56:49
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes