Lucene search

CVE-2024-37280

🗓️ 13 Jun 2024 17:50:15Reported by elasticType

Elasticsearch StackOverflow vulnerability in document ingestion

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 18
Vulnrichment	CVE-2024-37280 Elasticsearch StackOverflow vulnerability	13 Jun 202416:26	–	vulnrichment
OSV	CGA-683M-FM7M-7MVF	31 Mar 202516:01	–	osv
OSV	CGA-JGF5-4W5M-6H5J	19 Jun 202413:06	–	osv
OSV	GHSA-4Q22-422G-M4PJ Elasticsearch StackOverflow vulnerability	13 Jun 202418:31	–	osv
OSV	BIT-ELASTICSEARCH-2024-37280	17 Jun 202407:17	–	osv
OSV	CGA-QJF3-HJ5Q-C3QR	19 Jun 202413:06	–	osv
OSV	UBUNTU-CVE-2024-37280	13 Jun 202417:15	–	osv
OSV	CVE-2024-37280	13 Jun 202417:15	–	osv
Veracode	Denial Of Service (DoS)	14 Jun 202405:42	–	veracode
RedhatCVE	CVE-2024-37280	7 Jun 202407:05	–	redhatcve

Nvd

Node

elastic elasticsearchRange8.13.1–8.14.0

[
  {
    "defaultStatus": "unaffected",
    "product": "Elasticsearch",
    "vendor": "Elastic",
    "versions": [
      {
        "lessThanOrEqual": "8.13.4",
        "status": "affected",
        "version": "8.13.1",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
discuss	www.discuss.elastic.co/t/elasticsearch-8-14-0-security-update-esa-2024-14/361007
security	www.security.netapp.com/advisory/ntap-20240816-0003/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jun 2024 17:15Current

4.8Medium risk

Vulners AI Score4.8

CVSS34.9

EPSS0.00357

SSVC