It was identified that under certain specific preconditions, an API key that was originally created with a specific privileges could be subsequently used to create new API keys that have elevated privileges.
References
No reference.
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: elastic
Published: 2024-06-28T04:58:18.200Z
Updated: 2024-07-02T14:20:09.438Z
Reserved: 2024-06-05T14:21:14.942Z
Link: CVE-2024-37282
JSON object: View
NVD Information
No data.
Redhat Information
No data.
CWE