Lucene search
+L

7 matches found

CBLMariner
CBLMariner
added 2022/05/26 7:4 p.m.48 views

CVE-2021-22144 affecting package rubygem-elasticsearch 7.6.0-1

CVE-2021-22144 affecting package rubygem-elasticsearch 7.6.0-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS9.9AI score0.0218EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/04 9:13 p.m.40 views

Security Bulletin: Vulnerability in Elasticsearch affects IBM Cloud Private (CVE-2021-22144)

Summary There is a vulnerability in the Elasticsearch open source library. The library is used by IBM Cloud Private logging. This bulletin identifies the security fixes to apply to address the Elasticsearch vulnerability CVE-2021-22144. Vulnerability Details CVEID: CVE-2021-22144 DESCRIPTION:...

6.5CVSS6.4AI score0.0218EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/15 8:13 a.m.39 views

Security Bulletin: IBM Security SOAR is using a component with known vulnerabilities - Elasticsearch ( CVE-2021-22144, CVE-2021-22145, CVE-2021-22147)

Summary IBM Security SOAR is using a component with known vulnerabilities - Elasticsearch CVE-2021-22144, CVE-2021-22145, CVE-2021-22147 Vulnerability Details CVEID: CVE-2021-22144 DESCRIPTION: Elasticsearch is vulnerable to a denial of service, caused by an uncontrolled recursion vulnerability i...

6.5CVSS6.8AI score0.76249EPSS
Exploits6
vulnersOsv
vulnersOsv
added 2021/08/09 8:41 p.m.6 views

ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=5.3.0 <=5.7.9), ca.uhn.hapi.fhir:hapi-fhir-cli-app (>=5.6.5 <=5.7.9) +362 more potentially affected by CVE-2021-22144 via org.elasticsearch:elasticsearch (>=7.0.0-alpha1 <=7.13.2)

org.elasticsearch:elasticsearch MAVEN version =7.0.0-alpha1, =5.3.0, =5.6.5, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.6.5, =1.0.4.R, =2.1.0.M8, =1.0.2, =1.0.5 - cn.dustlight.datacenter:datacenter-elasticsearch =0.0.6-alpha-2 and more Source cves: CVE-2021-22144 Source...

6.5CVSS7AI score0.0218EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/09 8:41 p.m.4 views

ai.grakn:grakn-dist (>=0.7.0 <=0.16.0), ai.grakn:grakn-test (=0.10.0) +1856 more potentially affected by CVE-2021-22144 via org.elasticsearch:elasticsearch (>=0.6.0 <=6.8.16)

org.elasticsearch:elasticsearch MAVEN version =0.6.0, =0.7.0, =0.6.1, =0.11.0, =0.3.0, =1.0.1, =5.1.0, =5.1.0, =5.1.0, =5.1.0, =5.1.0, =5.1.0, =5.1.0, =5.2.1 - ca.uhn.hapi.fhir:hapi-fhir-jpaserver-starter =5.2.0 and more Source cves: CVE-2021-22144 Source advisory: OSV:GHSA-3393-HVRJ-W7V3...

6.5CVSS7AI score0.0218EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/07/27 12:0 a.m.22 views

Elastic Elasticsearch DoS Vulnerability (ESA-2021-15)

Elasticsearch is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.7AI score0.0218EPSS
Exploits0References1
CVE
CVE
added 2021/07/26 11:48 a.m.178 views

CVE-2021-22144

CVE-2021-22144 affects Elasticsearch Grok parser. The vulnerability is an uncontrolled recursion that enables a DoS via specially crafted Grok queries submitted by an authenticated user, potentially crashing the node. Affected versions are Elasticsearch before 7.13.3 and 6.8.17. Public references...

6.5CVSS6.3AI score0.0218EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder