Search Guard up to 20.x User Database Side-Channel information disclosure – Digitalmunition

Exploit Cybersecurity study of the dark web exposes vulnerability to machine identities -- ScienceDaily

Published on August 14th, 2019 📆 | 3452 Views ⚑


Search Guard up to 20.x User Database Side-Channel information disclosure

CVSS Meta Temp Score Current Exploit Price (≈)
2.5 $0-$5k

A vulnerability classified as problematic has been found in Search Guard up to 20.x. This affects some unknown functionality of the component User Database. The manipulation with an unknown input leads to a information disclosure vulnerability (Side-Channel). CWE is classifying the issue as CWE-514. This is going to have an impact on confidentiality.

The weakness was shared 08/13/2019. The advisory is shared at This vulnerability is uniquely identified as CVE-2019-13420 since 07/08/2019. The exploitability is told to be difficult. Neither technical details nor an exploit are publicly available.

Upgrading to version 21.0 eliminates this vulnerability.

The entry 139868 is related to this item.


VulDB Meta Base Score: 2.6
VulDB Meta Temp Score: 2.5

VulDB Base Score: ≈2.6
VulDB Temp Score: ≈2.5
VulDB Vector: 🔒
VulDB Reliability: 🔍

VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Class: Information disclosure / Side-Channel (CWE-514)
Local: Yes
Remote: No

Availability: 🔒
Status: Not defined

Price Prediction: 🔍
Current Price Estimation: 🔒

Threat Intelligenceinfoedit

Threat: 🔍
Adversaries: 🔍
Geopolitics: 🔍
Economy: 🔍
Predictions: 🔍
Remediation: 🔍Recommended: Upgrade
Status: 🔍

0-Day Time: 🔒

Upgrade: Search Guard 21.0

07/08/2019 CVE assigned
08/13/2019 +36 days Advisory disclosed
08/14/2019 +1 days VulDB entry created
08/14/2019 +0 days VulDB last updateAdvisory:

CVE: CVE-2019-13420 (🔒)
See also: 🔒

Created: 08/14/2019 02:00 PM
Complete: 🔍

Download it now for free!

Free Download WordPress Themes
Premium WordPress Themes Download
Premium WordPress Themes Download
Free Download WordPress Themes
download udemy paid course for free

Tagged with:

Leave a Reply ✍

This site uses Akismet to reduce spam. Learn how your comment data is processed.