Filters
Versions
maven/org.elasticsearch:elasticsearchAn issue was discovered by Elastic whereby Watcher search input logged the search query results on D…
6.5
First published (updated )
maven/org.elasticsearch:elasticsearchElasticsearch StackOverflow vulnerability
4.9
First published (updated )
maven/org.elasticsearch:elasticsearch-hadoopElasticsearch-hadoop Unsafe Deserialization
7.8
First published (updated )
maven/org.elasticsearch:elasticsearchIt was identified that malformed scripts used in the script processor of an Ingest Pipeline could ca…
7.5
First published (updated )
Elastic ElasticsearchElasticsearch privilege escalation
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic ElasticsearchElasticsearch Insertion of sensitive information in audit logs
7.5
First published (updated )
Elastic ElasticsearchElasticsearch uncontrolled resource consumption
7.5
First published (updated )
maven/org.elasticsearch:elasticsearchElasticsearch StackOverflow vulnerability
7.5
First published (updated )
Elastic ElasticsearchA Denial of Service flaw was discovered in Elasticsearch. Using this vulnerability, an unauthenticat…
7.5
First published (updated )
Elastic ElasticsearchA flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic ElasticsearchElasticsearch before 7.14.0 did not apply document and field level security to searchable snapshots.…
6.5
First published (updated )
Elastic ElasticsearchIn Elasticsearch versions before 7.13.3 and 6.8.17 an uncontrolled recursion vulnerability that coul…
6.5
First published (updated )
Elastic ElasticsearchAll versions of Elastic Cloud Enterprise has the Elasticsearch “anonymous” user enabled by default i…
7.5
First published (updated )
Elastic ElasticsearchA memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. …
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic ElasticsearchElasticsearch versions before 7.10.0 and 6.8.14 have an information disclosure issue when audit logg…
4.9
First published (updated )
redhat/elasticsearchElasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search AP…
4.8
First published (updated )
redhat/elasticsearchElasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or F…
3.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic ElasticsearchIn Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling …
6.5
First published (updated )
Elastic ElasticsearchThe fix for CVE-2020-7009 was found to be incomplete. Elasticsearch versions from 6.7.0 to 6.8.7 and…
8.8
First published (updated )
Elastic ElasticsearchElasticsearch versions from 6.7.0 before 6.8.8 and 7.0.0 before 7.6.2 contain a privilege escalation…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic ElasticsearchA permission issue was found in Elasticsearch versions before 5.6.15 and 6.6.1 when Field Level Secu…
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic ElasticsearchElasticsearch before 1.6.1 allows remote attackers to execute arbitrary code via unspecified vectors…
9.8
First published (updated )
Elasticsearch ElasticsearchElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
First published (updated )
redhat/katello-configureElasticsearch Remote Code Execution Vulnerability
First published (updated )