Unauthorized Access to Clusters via Invalid Roles Token in Elastic Cloud Enterprise (ECE) Versions Prior to 1.1.4

Unauthorized Access to Clusters via Invalid Roles Token in Elastic Cloud Enterprise (ECE) Versions Prior to 1.1.4

CVE-2018-3829 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

In Elastic Cloud Enterprise (ECE) versions prior to 1.1.4 it was discovered that a user could scale out allocators on new hosts with an invalid roles token. An attacker with access to the previous runner ID and IP address of the coordinator-host could add a allocator to an existing ECE install to gain access to other clusters data.

Learn more about our Cloud Audit.