Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-23716


A flaw was discovered in ECE before 3.1.1 that could lead to the disclosure of the SAML signing private key used for the RBAC features, in deployment logs in the Logging and Monitoring cluster.


Published

2022-09-28T20:15:11.307

Last Modified

2025-05-21T15:15:56.133

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-532
  • Type: Primary
    CWE-532

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application elastic elastic_cloud_enterprise < 3.1.1 Yes

References