Security Advisory

CVE-2019-13417

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-12 20:51:23

Last updated 2024-08-04 23:49:24

Assigner floragunn

State PUBLISHED

Description

Search Guard versions before 24.0 had an issue that field caps and mapping API leak field names (but not values) for fields which are not allowed for the user when field level security (FLS) is activated.

← Browse all CVEs View on cve.org ↗