What is CVE-2019-7611?

CVE-2019-7611 is a vulnerability found in Elasticsearch versions before 5.6.15 and 6.6.1.

What is the severity of CVE-2019-7611?

The severity of CVE-2019-7611 is high with a CVSS score of 8.1.

What is the recommended remedy for CVE-2019-7611?

The recommended remedy for CVE-2019-7611 is to upgrade to Elasticsearch version 5.6.15 or 6.6.1.

Where can I find more information about CVE-2019-7611?

You can find more information about CVE-2019-7611 in the references provided: [Link 1](https://discuss.elastic.co/t/elastic-stack-6-6-1-and-5-6-15-security-update/169077), [Link 2](https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1696035), [Link 3](https://access.redhat.com/support/policy/updates/jboss_notes)

Vulnerability/
CVE-2019-7611

high

8.1

CWE

284

25/3/2019

16/2/2021

CVE-2019-7611

Q: How does CVE-2019-7611 affect Elasticsearch?

CVE-2019-7611 affects Elasticsearch when Field Level Security and Document Level Security are disabled and certain endpoints are used.

First published: Mon Mar 25 2019(Updated: )

A permission issue was found in Elasticsearch versions before 5.6.15 and 6.6.1 when Field Level Security and Document Level Security are disabled and the _aliases, _shrink, or _split endpoints are used . If the elasticsearch.yml file has xpack.security.dls_fls.enabled set to false, certain permission checks are skipped when users perform one of the actions mentioned above, to make existing data available under a new index/alias name. This could result in an attacker gaining additional permissions against a restricted index.

Credit: bressers@elastic.co

Affected Software	Affected Version	How to fix
Elastic Elasticsearch	<5.6.15
Elastic Elasticsearch	>=6.0.0<6.6.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2019-7611?
CVE-2019-7611 is a vulnerability found in Elasticsearch versions before 5.6.15 and 6.6.1.
What is the severity of CVE-2019-7611?
The severity of CVE-2019-7611 is high with a CVSS score of 8.1.
How does CVE-2019-7611 affect Elasticsearch?
CVE-2019-7611 affects Elasticsearch when Field Level Security and Document Level Security are disabled and certain endpoints are used.
What is the recommended remedy for CVE-2019-7611?
The recommended remedy for CVE-2019-7611 is to upgrade to Elasticsearch version 5.6.15 or 6.6.1.
Where can I find more information about CVE-2019-7611?
You can find more information about CVE-2019-7611 in the references provided: [Link 1](https://discuss.elastic.co/t/elastic-stack-6-6-1-and-5-6-15-security-update/169077), [Link 2](https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1696035), [Link 3](https://access.redhat.com/support/policy/updates/jboss_notes)

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
collector/nvd-index
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2019-7611
agent/software-canonical-lookup
vendor/elastic
canonical/elastic elasticsearch
version/elastic elasticsearch/6.0.0
package-manager/redhat

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.