If Elastic Endpoint (v7.9.0 - v8.10.3) is configured to use a non-default option in which the logging level is explicitly set to debug, and when Elastic Agent is simultaneously configured to collect and send those logs to Elasticsearch, then Elastic Agent API keys can be viewed in Elasticsearch in plaintext. These API keys could be used to write arbitrary data and read Elastic Endpoint user artifacts.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: elastic

Published: 2023-10-25T23:59:13.485Z

Updated: 2024-09-09T19:34:43.300Z

Reserved: 2023-10-24T17:28:32.185Z

Link: CVE-2023-46668

cve-icon Vulnrichment

Updated: 2024-08-02T20:53:20.986Z

cve-icon NVD

Status : Modified

Published: 2023-10-26T00:15:12.150

Modified: 2024-11-21T08:29:01.693

Link: CVE-2023-46668

cve-icon Redhat

No data.