CVE-2020-7020 (Low) detected in multiple libraries #107
Description
CVE-2020-7020 - Low Severity Vulnerability
Vulnerable Libraries - elasticsearch-6.4.2.jar, elasticsearch-6.8.3.jar, elasticsearch-5.6.10.jar
elasticsearch-6.4.2.jar
Elasticsearch subproject :server
Library home page: https://github.com/elastic/elasticsearch
Path to dependency file: cloud-pipeline/billing-report-agent/build.gradle
Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.elasticsearch/elasticsearch/6.4.2/29a4003b7e28ae8d8896041e2e16caa7c4272ee3/elasticsearch-6.4.2.jar,canner/.gradle/caches/modules-2/files-2.1/org.elasticsearch/elasticsearch/6.4.2/29a4003b7e28ae8d8896041e2e16caa7c4272ee3/elasticsearch-6.4.2.jar
Dependency Hierarchy:
- ❌ elasticsearch-6.4.2.jar (Vulnerable Library)
elasticsearch-6.8.3.jar
Elasticsearch subproject :server
Library home page: https://github.com/elastic/elasticsearch
Path to dependency file: cloud-pipeline/elasticsearch-agent/build.gradle
Path to vulnerable library: canner/.gradle/caches/modules-2/files-2.1/org.elasticsearch/elasticsearch/6.8.3/f5b3531c307aa42060960ed2b6b9fc99918b33c9/elasticsearch-6.8.3.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.elasticsearch/elasticsearch/6.8.3/f5b3531c307aa42060960ed2b6b9fc99918b33c9/elasticsearch-6.8.3.jar
Dependency Hierarchy:
- transport-6.8.3.jar (Root Library)
- transport-netty4-client-5.6.9.jar
- ❌ elasticsearch-6.8.3.jar (Vulnerable Library)
- transport-netty4-client-5.6.9.jar
elasticsearch-5.6.10.jar
Elasticsearch subproject :core
Library home page: https://github.com/elastic/elasticsearch
Path to dependency file: cloud-pipeline/api/build.gradle
Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.elasticsearch/elasticsearch/5.6.10/ab7febde50a92702bbbba83db69acd75bda4b25/elasticsearch-5.6.10.jar
Dependency Hierarchy:
- transport-5.6.10.jar (Root Library)
- ❌ elasticsearch-5.6.10.jar (Vulnerable Library)
Found in HEAD commit: 1db3170e0bd699acd5fec6e3fcebfa68fe86edcf
Found in base branch: develop
Vulnerability Details
Elasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.
Publish Date: 2020-10-22
URL: CVE-2020-7020
CVSS 3 Score Details (3.1)
Base Score Metrics:
- Exploitability Metrics:
- Attack Vector: Network
- Attack Complexity: High
- Privileges Required: Low
- User Interaction: None
- Scope: Unchanged
- Impact Metrics:
- Confidentiality Impact: Low
- Integrity Impact: None
- Availability Impact: None
Suggested Fix
Type: Upgrade version
Origin: https://discuss.elastic.co/t/elastic-stack-7-9-3-and-6-8-13-security-update/253033
Release Date: 2020-07-21
Fix Resolution: org.elasticsearch:elasticsearch:6.8.13,7.9.3