7Şub
CVE-2024-23446 | Elastic Kibana up to 8.12.0 Detection Engine Search API .alerts-security.alerts-{space_id} access control
A vulnerability has been found in Elastic Kibana up to 8.12.0 and classified as critical. This vulnerability affects unknown code of the file .alerts-security.alerts-{space_id} of the component Detection Engine Search API. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-23446. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.