Vulnerability ESA-2019-04


I have this vulnerability

But we don't have xpack-security installed.
Does it apply to me?

What version of Elasticsearch are you using? That applies to a super old version.

We are using 5.2.2

Do you have any other security plugin enabled? If not, the entire cluster is open and you do not need to exploit any security vulnerabilities to get access to the cluster.

Also note that the version you are using is very, very old and has been EOL for many years. You should really look to upgrade and enable security.

5.x is very much EOL and the only option here is to upgrade.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.