CVE-2023-46668

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Oct 26, 2023
Updated: Nov 6, 2023
CWE ID 532

Summary

CVE-2023-46668 is a vulnerability that affects Elastic Endpoint versions 7.9.0 to 8.10.3. It occurs when the logging level is set to debug and Elastic Agent is configured to collect and send logs to Elasticsearch. In this scenario, the API keys of Elastic Agent can be exposed in plaintext in Elasticsearch, which could allow an attacker to write arbitrary data and access user artifacts on Elastic Endpoint. The vulnerability has a risk score of 65 and a base severity of MEDIUM according to the CVSS score. The exploitability score is 2.1, indicating a relatively low level of difficulty for exploitation. The potential impact includes low integrity and confidentiality impacts, but no availability impact is expected. To remediate this vulnerability, it is recommended to update Elastic Endpoint to a version after 8.10.3 or configure the logging level to not use debug mode. Note: The information provided is based on the given text and does not include any additional external sources or analysis beyond what is stated in the text provided.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-46668 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options