Filter
-Infinity
0
Trending
Versions
7.0.0
28
8.0.0
27
6.0.0
13
5.0.0
9
5.3.0
8
5.4.0
7
6
6
7
6
8
6
5.1.1
5
5.2.0
5
5.3.1
5
5.3.2
5
5.6.0
5
7.11.0
5
5.0.1
4
5.2.2
4
5.3.3
4
6.7.0
4
4.1.0
3
4.5.0
3
5.0.2
3
5.2.1
3
5.5.0
3
5.5.2
3
6.0.0-beta1
3
7.17.12
3
7.7.0
3
7.9.0
3
4.0.0
2
4.2.0
2
4.6.0
2
5.4.2
2
5.4.3
2
5.5.1
2
5.6.1
2
5.6.2
2
5.6.3
2
5.6.4
2
6.0.0-alpha1
2
6.0.0-alpha2
2
6.0.0-beta2
2
6.0.0-rc1
2
6.0.0-rc2
2
6.4.2
2
7.13.0
2
7.13.3
2
7.14.0
2
7.17.0
2
7.3.2
2
ElasticA deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse…
9.9
First published (updated )
ElasticKibana arbitrary code execution via prototype pollution
9.9
EPSS
0.04%
First published (updated )
Elastic ElasticsearchElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ElasticKibana versions 4.0 to 4.6, 5.0 to 5.6.12, and 6.0 to 6.4.2 contain an error in the way authorizatio…
9.8
First published (updated )
ElasticKibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plug…
9.8
First published (updated )
ElasticElasticsearch before 1.6.1 allows remote attackers to execute arbitrary code via unspecified vectors…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ElasticKibana arbitrary code execution via prototype pollution
9.1
First published (updated )
ElasticKibana arbitrary code execution via YAML deserialization
9.1
First published (updated )
ElasticElastic Endpoint Insertion of Sensitive Information into Log File
9.1
First published (updated )
ElasticKibana Insertion of Sensitive Information into Log File
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ElasticThe fix for CVE-2020-7009 was found to be incomplete. Elasticsearch versions from 6.7.0 to 6.8.7 and…
8.8
First published (updated )
ElasticElastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the run_as fun…
8.8
First published (updated )
ElasticAn error was found in the permission model used by X-Pack Alerting 5.0.0 to 5.6.0 whereby users mapp…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ElasticElasticsearch versions from 6.7.0 before 6.8.8 and 7.0.0 before 7.6.2 contain a privilege escalation…
8.8
First published (updated )
redhat/elasticsearchA permission issue was found in Elasticsearch versions before 5.6.15 and 6.6.1 when Field Level Secu…
8.1
First published (updated )
redhat/katello-configureElasticsearch Remote Code Execution Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ElasticKibana Insertion of Sensitive Information into Log File
8
First published (updated )
ElasticKibana Insertion of Sensitive Information into Log File
8
First published (updated )
pip/elastic-apmA local privilege escalation issue was found with the APM Java agent, where a user on the system cou…
7.8
First published (updated )
Elastic EndpointAn issue was discovered in the quarantine feature of Elastic Endpoint Security and Elastic Endgame f…
7.8
First published (updated )
Elastic EndpointAn issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which coul…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.