Vulnerability Details : CVE-2023-31421
It was discovered that when acting as TLS clients, Beats, Elastic Agent, APM Server, and Fleet Server did not verify whether the server certificate is valid for the target IP address; however, certificate signature validation is still performed. More specifically, when the client is configured to connect to an IP address (instead of a hostname) it does not validate the server certificate's IP SAN values against that IP address and certificate validation fails, and therefore the connection is not blocked as expected.
Products affected by CVE-2023-31421
- cpe:2.3:a:elastic:apm_server:*:*:*:*:*:*:*:*
- cpe:2.3:a:elastic:elastic_beats:*:*:*:*:*:*:*:*
- cpe:2.3:a:elastic:elastic_agent:*:*:*:*:*:*:*:*
- cpe:2.3:a:elastic:elastic_fleet_server:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-31421
0.10%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 42 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-31421
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.9
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
2.2
|
3.6
|
Elastic | |
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2023-31421
-
The product does not validate, or incorrectly validates, a certificate.Assigned by:
- bressers@elastic.co (Secondary)
- nvd@nist.gov (Primary)
References for CVE-2023-31421
-
https://www.elastic.co/community/security
Elastic Stack Security Disclosures ยท Report Issues | ElasticVendor Advisory
-
https://discuss.elastic.co/t/beats-elastic-agent-apm-server-and-fleet-server-8-10-1-security-update-improper-certificate-validation-issue-esa-2023-16/343385
Beats, Elastic Agent, APM Server, and Fleet Server 8.10.1 Security Update - Improper Certificate Validation issue (ESA-2023-16) - Announcements / Security Announcements - Discuss the Elastic StackVendor Advisory
Jump to