Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/29 5:26 p.m.5 views

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in elasticsearch-7.17.13.jar

Summary IBM Watson Discovery Cartridge affected by vulnerability in elasticsearch-7.17.13.jar Vulnerability Details CVEID:CVE-2024-52980 DESCRIPTION: A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cau...

6.5CVSS5.3AI score0.00467EPSS
Exploits0Affected Software1
Circl
Circl
added 2025/04/08 7:51 p.m.10 views

CVE-2024-52980

creationtimestamp| type| source ---|---|--- 2025-04-08 19:51:42+00:00| seen| https://t.me/cvedetector/22490 2025-04-09 23:24:44+00:00| seen| https://bsky.app/profile/omo.bsky.social/post/3lmg5533fis2a...

6.5CVSS4.8AI score0.00467EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/04/08 6:34 p.m.7 views

ai.ylyue:yue-library-data-es (>=j8.2.2.0 <=j11.2.4.0), br.com.simpli:simpli-ws (>=1.2.1 <=2.2.0) +824 more potentially affected by CVE-2024-52980 via org.elasticsearch:elasticsearch (>=7.17.0 <=8.15.0)

org.elasticsearch:elasticsearch MAVEN version =7.17.0, =j8.2.2.0, =1.2.1, =0.0.1-alpha, =6.0.0, =6.0.3, =6.0.0, =6.0.0, =6.0.0, =6.0.0, =6.2.0, =6.8.0, =6.4.0, =6.0.0, =6.0.0, =6.0.3, =6.8.0 and more Source cves: CVE-2024-52980 Source advisory: OSV:GHSA-GHFH-P92W-J4MG...

6.5CVSS5.4AI score0.00467EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/04/08 5:15 p.m.5 views

CVE-2024-52980

A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cause the Elasticsearch node to crash. A successful attack requires a malicious user to have readpipeline Elasticsearch cluster privilege assigned to the...

6.5CVSS7.1AI score0.00467EPSS
Exploits0References2
OSV
OSV
added 2025/04/08 4:43 p.m.4 views

CVE-2024-52980 Elasticsearch Uncontrolled Resource Consumption vulnerability

A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cause the Elasticsearch node to crash. A successful attack requires a malicious user to have readpipeline Elasticsearch cluster privilege assigned to the...

6.5CVSS5.9AI score0.00467EPSS
Exploits0References3
CVE
CVE
added 2025/04/08 4:43 p.m.77 views

CVE-2024-52980

CVE-2024-52980 refers to an Elasticsearch vulnerability where a large recursion in the PatternBank.innerForbidCircularReferences function can crash a node. The issue requires a user with read_pipeline cluster privilege to trigger the condition, making it a resource-exhaustion risk (availability l...

6.5CVSS6.9AI score0.00467EPSS
Exploits0References1Affected Software1
Elastic
Elastic
added 2025/04/08 3:54 p.m.9 views

Elasticsearch 8.15.1 Security Update (ESA-2024-34)

Elasticsearch Uncontrolled Resource Consumption vulnerability ESA-2024-34 A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cause the Elasticsearch node to crash. A successful attack requires a malicious...

6.5CVSS7AI score0.00467EPSS
Exploits0
Rows per page
Query Builder