Critical || Unrestricted access to private Github repos and properties of Elastic through leaked token of Elastic employee
Critical
E
Elastic
Submitted None
Team Summary
Official summary from Elastic
@prateek_0490 was able to gain access to private Github repositories through a leaked Github token on bitbucket. We confirmed this token was valid, and have rotated.
Actions:
Reported by
prateek_0490
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Cleartext Storage of Sensitive Information