{"vulnerability": "CVE-2020-7021", "sightings": [{"uuid": "f13b56b8-535e-4fae-a64f-69b3a0162493", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-7021", "type": "seen", "source": "https://t.me/arpsyndicate/3153", "content": "#ExploitObserverAlert\n\nCVE-2020-7021\n\nDESCRIPTION: Exploit Observer has 4 entries in 3 file formats related to CVE-2020-7021. Elasticsearch versions before 7.10.0 and 6.8.14 have an information disclosure issue when audit logging and the emit_request_body option is enabled. The Elasticsearch audit log could contain sensitive information such as password hashes or authentication tokens. This could allow an Elasticsearch administrator to view these details.\n\nFIRST-EPSS: 0.000650000\nNVD-IS: 3.6\nNVD-ES: 1.2", "creation_timestamp": "2024-01-28T01:48:16.000000Z"}]}