CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

vulnersOsv•added 2022/05/14 2:48 a.m.•3 views

ai.grakn:grakn-dist (>=0.7.0 <=0.16.0), ai.grakn:grakn-test (=0.10.0) +544 more potentially affected by CVE-2015-5531 via org.elasticsearch:elasticsearch (>=0.6.0 <=1.6.0)

org.elasticsearch:elasticsearch MAVEN version =0.6.0, =0.7.0, =0.6.1, =0.11.0, =0.3.0, =1.0.1, =1.0.0, =0.1PRE2, =0.1PRE1, =0.1PRE1, =0.1PRE1, =0.1PRE4, =0.1PRE6 and more Source cves: CVE-2015-5531 Source advisory: OSV:GHSA-JJQ8-VFJQ-J6V4...

5CVSS7.7AI score0.9175EPSS

Exploits7

IBM Security Bulletins•added 2018/06/15 7:3 a.m.•27 views

Security Bulletin: Multiple security vulnerabilities in Elasticsearch might affect Process Federation Server in IBM Business Process Manager (BPM) - CVE-2015-5531, CVE-2015-5377

Summary IBM Process Federation Server is an optional component that is shipped with IBM Business Process Manager BPM V8.5.6.0. It allows the collection of task information of existing IBM Business Process Manager environments to provide a federated task list. IBM Process Federation Server uses th...

9.8CVSS0.3AI score0.9175EPSS

Exploits9Affected Software3

Circl•added 2018/05/29 3:50 p.m.•16 views

CVE-2015-5531

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/elasticsearchtraversal.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:41+00:00|...

5CVSS9.3AI score0.9175EPSS

Exploits7References1

OpenVAS•added 2016/06/23 12:0 a.m.•47 views

Elasticsearch < 1.6.1 Multiple Vulnerabilities - Windows

Elasticsearch is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elastic:elasticsearch";...

9.8CVSS10AI score0.9175EPSS

Exploits9References3

Packet Storm•added 2015/10/14 12:0 a.m.•57 views

ElasticSearch Snapshot API Directory Traversal

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'json' class Metasploit3 'ElasticSearch Snapshot API Directory Traversal', 'Description' = %q This module exploits a directory traversal...

5CVSS9.5AI score0.9175EPSS

Exploits7

0day.today•added 2015/10/02 12:0 a.m.•92 views

ElasticSearch 1.6.0 - Arbitrary File Download Vulnerability

Exploit for linux platform in category web applications elasticpwn Script for ElasticSearch url path traversal vuln. CVE-2015-5531 email protected elasticpwn$ python CVE-2015-5531.py exploitlab.int /etc/hosts !dSR script for CVE-2015-5531 127.0.0.1 localhost The following lines are desirable for...

5CVSS9.6AI score0.9175EPSS

Exploits7

Exploit DB•added 2015/10/02 12:0 a.m.•61 views

ElasticSearch 1.6.0 - Arbitrary File Download

elasticpwn Script for ElasticSearch url path traversal vuln. CVE-2015-5531 crg@fogheaven elasticpwn$ python CVE-2015-5531.py exploitlab.int /etc/hosts !dSR script for CVE-2015-5531 127.0.0.1 localhost The following lines are desirable for IPv6 capable hosts ::1 ip6-localhost ip6-loopback fe00::0...

5CVSS9.5AI score0.9175EPSS

Exploits7

exploitpack•added 2015/10/02 12:0 a.m.•41 views

ElasticSearch 1.6.0 - Arbitrary File Download

ElasticSearch 1.6.0 - Arbitrary File Download elasticpwn Script for ElasticSearch url path traversal vuln. CVE-2015-5531 crg@fogheaven elasticpwn$ python CVE-2015-5531.py exploitlab.int /etc/hosts !dSR script for CVE-2015-5531 127.0.0.1 localhost The following lines are desirable for IPv6 capable...

5CVSS9.6AI score0.9175EPSS

Exploits7

OSV•added 2015/08/17 3:59 p.m.•7 views

UBUNTU-CVE-2015-5531

Directory traversal vulnerability in Elasticsearch before 1.6.1 allows remote attackers to read arbitrary files via unspecified vectors related to snapshot API calls...

5CVSS7.5AI score0.9175EPSS

Exploits7References3

securityvulns•added 2015/07/20 12:0 a.m.•76 views

Elasticsearch CVE-2015-5531

Summary: Elasticsearch versions from 1.0.0 to 1.6.0 are vulnerable to a directory traversal attack that allows an attacker to retrieve files that are readable by the Elasticsearch JVM process. We have been assigned CVE-2015-5531 for this issue. Fixed versions: Versions 1.6.1 and 1.7.0 address the...

5CVSS2.6AI score0.9175EPSS

Exploits7

Elastic•added 2015/07/16 5:31 p.m.•6 views

Elasticsearch directory traversal vulnerability CVE-2015-5531

Summary Elasticsearch versions from 1.0.0 to 1.6.0 are vulnerable to a directory traversal attack that allows an attacker to retrieve files that are readable by the Elasticsearch JVM process. We have been assigned CVE-2015-5531 for this issue. Fixed versions Versions 1.6.1 and 1.7.0 address the...

5CVSS7AI score0.9175EPSS

Exploits7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by