Elastic Sharepoint Online Python Connector
Approved changes feed: RSS · Atom
cpe:2.3:a:elastic:elastic_sharepoint_online_python_connector:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Elastic (1d0b8d2a-fd47-5b20-b005-34326f9bd037) |
|---|---|
| Product | Elastic Sharepoint Online Python Connector (2487fc76-0f79-55f0-b039-135f71db38a1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/elastic/enterprise-search-sharepoint-server-connector |
purl2cpe | 2026-06-01 10:15:15.591580 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-46666 |
vulnerable | 2026-06-03 14:53:10.314958 |
Elastic Sharepoint Online Python Connector Improper Access Control
MEDIUM (5.3)
An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a Sharepoint site then that user would have read permissions to all content on the Sharepoint site through Elasticsearch.
Published: 2023-10-26T16:16:10.888Z
Updated: 2024-09-09T15:51:59.819Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.