Vulnerabilities > Elastic > X Pack > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-03-30 CVE-2018-3822 Path Traversal vulnerability in Elastic X-Pack 6.2.0/6.2.1/6.2.2
X-Pack Security versions 6.2.0, 6.2.1, and 6.2.2 are vulnerable to a user impersonation attack via incorrect XML canonicalization and DOM traversal.
network
low complexity
elastic CWE-22
critical
 9.8
9.8