VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 26, 2023· Updated Sep 9, 2024

Fleet Server Insertion of Sensitive Information into Log File

CVE-2023-46667

Description

An issue was discovered in Fleet Server >= v8.10.0 and < v8.10.3 where Agent enrolment tokens are being inserted into the Fleet Server’s log file in plain text. These enrolment tokens could allow someone to enrol an agent into an agent policy, and potentially use that to retrieve other secrets in the policy including for Elasticsearch and third-party services. Alternatively a threat actor could potentially enrol agents to the clusters and send arbitrary events to Elasticsearch.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Elastic/Fleet Serverllm-fuzzy2 versions
    >=8.10.0 <8.10.3+ 1 more
    • (no CPE)range: >=8.10.0 <8.10.3
    • (no CPE)range: 8.10.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.