Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-3294

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00243EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/05 6:48 p.m.24 views

Security Bulletin: Vulnerability in Elastic Elasticsearch-Hadoop affects watsonx.data

Summary Elastic Elasticsearch-Hadoop could allow the unsafe deserialization of java objects from hadoop or spark configuration properties that could have been modified by authenticated users. As this occurs when the user has been authenticated, there is limited impact to watsonx.data. Vulnerabili...

7.8CVSS8.1AI score0.00243EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2024/06/20 8:51 p.m.24 views

CVE-2023-46674

A flaw was found in elasticsearch-hadoop that allowed the unsafe deserialization of Java objects from Hadoop or spark configuration properties that could have been modified by authenticated users. Unsafe deserialization may impact integrity by allowing an attacker to modify unexpected objects or...

6CVSS6.7AI score0.00243EPSS
Exploits0References3
Elastic
Elastic
added 2023/12/05 4:27 p.m.8 views

Elasticsearch-hadoop 7.17.11 / 8.9.0 Security Update (ESA-2023-28)

Elasticsearch-hadoop Unsafe Deserialization ESA-2023-28 An issue was identified that allowed the unsafe deserialization of java objects from hadoop or spark configuration properties that could have been modified by authenticated users. Elastic would like to thank Yakov Shafranovich, with Amazon W...

7.8CVSS7.4AI score0.00243EPSS
Exploits0
CNNVD
CNNVD
added 2023/12/05 12:0 a.m.7 views

Elasticsearch-hadoop Code Issue Vulnerability

Elasticsearch is a search engine based on the Lucene library. A security vulnerability exists in Elasticsearch-hadoop that stems from a deserialization vulnerability in java objects in hadoop or spark configuration properties. Affected products and versions: Elasticsearch-hadoop versions prior to...

7.8CVSS6.3AI score0.00243EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/05 12:0 a.m.5 views

PT-2023-30155 · Unknown · Elasticsearch

Name of the Vulnerable Software and Affected Versions: Elasticsearch affected versions not specified Description: An issue was identified that allowed the unsafe deserialization of java objects from hadoop or spark configuration properties that could have been modified by authenticated users...

7.8CVSS6.5AI score0.00243EPSS
Exploits0References10
Rows per page
Query Builder