CVE-2021-22148 – Elastic Enterprise Search App Search versions before 7.14.0 was vulnerable to an issue whe …

Vuln ID: CVE-2021-22148

Published:  2021-09-15  12:15:08Z

Description: Elastic Enterprise Search App Search versions before 7.14.0 was vulnerable to an issue where API keys were not bound to the same engines as their creator. This could lead to a less privileged user gaining access to unauthorized engines.

Source: NVD.NIST.GOV