Описание
It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 7.0.0 (включая) до 7.17.14 (исключая)Версия от 8.0.0 (включая) до 8.10.3 (исключая)
Одно из
cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*
cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00811
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-755
CWE-755
Связанные уязвимости
CVSS3: 6.5
ubuntu
около 2 лет назад
It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
CVSS3: 7.5
redhat
около 2 лет назад
It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
CVSS3: 6.5
debian
около 2 лет назад
It was identified that malformed scripts used in the script processor ...
CVSS3: 6.5
github
около 2 лет назад
Elasticsearch Improper Handling of Exceptional Conditions
EPSS
Процентиль: 74%
0.00811
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-755
CWE-755