Unrated severityNVD Advisory· Published Feb 7, 2024· Updated Apr 24, 2025
Elastic Network Drive Connector Improper Access Control
CVE-2024-23447
Description
An issue was discovered in the Windows Network Drive Connector when using Document Level Security to assign permissions to a file, with explicit allow write and deny read. Although the document is not accessible to the user in Network Drive it is visible in search applications to the user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<8.12.1+ 1 more
- (no CPE)range: <8.12.1
- (no CPE)range: 8.11.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.