Lucene search
ElasticCVELIST:CVE-2021-22146HistoryJul 21, 2021 - 11:28 a.m.
CVE-2021-22146
2021-07-2111:28:12
elastic
www.cve.org
1
0.022 Low
EPSS
Percentile
89.4%
All versions of Elastic Cloud Enterprise has the Elasticsearch “anonymous” user enabled by default in deployed clusters. While in the default setting the anonymous user has no permissions and is unable to successfully query any Elasticsearch APIs, an attacker could leverage the anonymous user to gain insight into certain details of a deployed cluster.
Related
zdt
zdt
Elasticsearch ECE 7.13.3 - Anonymous Database Dump Exploit
2021-07-26 00:00:00
seebug
seebug
Elasticsearch ECE 7.13.3信息泄露漏洞(CVE-2021-22146)
2021-07-30 00:00:00
githubexploit
githubexploit
Exploit for CVE-2021-22146
2021-07-22 06:50:34
packetstorm
packetstorm
Elasticsearch ECE 7.13.3 Database Disclosure
2021-07-26 00:00:00
cve
cve
CVE-2021-22146
2021-07-21 15:15:14
osv
osv
BIT-elasticsearch-2021-22146
2024-03-06 10:53:02
CVE-2021-22146
2021-07-21 15:15:14
prion
prion
Default credentials
2021-07-21 15:15:00
nvd
nvd
CVE-2021-22146
2021-07-21 15:15:14
exploitdb
exploitdb
Elasticsearch ECE 7.13.3 - Anonymous Database Dump
2021-07-26 00:00:00