Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Elasticsearch
(Elastic)| Repositories | https://github.com/elastic/elasticsearch |
| #Vulnerabilities | 39 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2015-02-17 | CVE-2015-1427 | The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script. | Elasticsearch, Fuse | 9.8 | ||
| 2025-01-21 | CVE-2024-43709 | An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQL function. | Elasticsearch | 7.5 | ||
| 2025-01-21 | CVE-2024-43709 | An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQL function. | Elasticsearch | 7.5 |