This issue only affects the API key based security model for remote clusters https://www.elastic.co/guide/en/elasticsearch/reference/8.14/remote-clusters.html#remote-clusters-security-models that was previously a beta feature and is released as GA with 8.14.0
Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Fri, 26 Sep 2025 23:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:* |
Wed, 16 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Tue, 15 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Thu, 31 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-922 | |
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: elastic
Published:
Updated: 2024-10-31T14:18:21.203Z
Reserved: 2024-01-16T21:31:26.029Z
Link: CVE-2024-23445

Updated: 2024-08-01T23:06:24.245Z

Status : Analyzed
Published: 2024-06-12T14:15:10.963
Modified: 2025-09-26T23:43:11.980
Link: CVE-2024-23445


Updated: 2025-07-12T22:44:41Z