Elastic: >> Elasticsearch >> 7.1.1 Security Vulnerabilities
A race condition flaw was found in the response headers Elasticsearch versions before 7.2.1 and 6.8.2 returns to a request. On a system with multiple users submitting requests, it could be possible for an attacker to gain access to response header containing sensitive data from another user.
CVSS Score
5.9
EPSS Score
0.004
Published
2019-07-30
Page 3