Sensitive Data: ElasticSearch - Default Login¶
Identifier:
elasticsearch_default_login
Scanner(s) Support¶
| GraphQL Scanner | REST Scanner | WebApp Scanner | ASM Scanner |
|---|---|---|---|
Description¶
Elasticsearch search engine may be accessible with default credentials, allowing unauthorized access to indexed data, cluster configuration, and administrative functions.
How we test: We attempt to authenticate to the Elasticsearch API using common default username and password combinations. If authentication succeeds, we report the vulnerability.
Reference:
- https://www.alibabacloud.com/blog/what-is-the-default-username-and-password-for-elasticsearch_599610
- https://www.elastic.co/guide/en/elasticsearch/reference/current/built-in-users.html
Configuration¶
Example¶
Example configuration:
Reference¶
skip¶
Type : boolean
Skip the test if true.