Medium severity5.5NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026
CVE-2017-8445
CVE-2017-8445
Description
An error was found in the X-Pack Security TLS trust manager for versions 5.0.0 to 5.5.1. If reloading the trust material fails the trust manager will be replaced with an instance that trusts all certificates. This could allow any node using any certificate to join a cluster. The proper behavior in this instance is for the TLS trust manager to deny all certificates.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 5.0.0 to 5.5.1
Patches
Vulnerability mechanics
References
1- www.elastic.co/community/securitynvdVendor Advisory
News mentions
0No linked articles in our index yet.