5 matches found
CVE-2022-23712 affecting package rubygem-elasticsearch 8.2.0-1
CVE-2022-23712 affecting package rubygem-elasticsearch 8.2.0-1. An upgraded version of the package is available that resolves this issue...
com.farcsal.dql:query-es (=0.8.0), com.github.msarhan:elasticsearch-analysis-arabic (>=1.2.0 <=1.4.0) +15 more potentially affected by CVE-2022-23712 via org.elasticsearch:elasticsearch (>=8.0.0 <=8.2.0)
org.elasticsearch:elasticsearch MAVEN version =8.0.0, =1.2.0, =2.6.7, =8.9.0-alpha5, =8.9.0-alpha5, =0.83.0, =6.12, =8.0.0, =8.0.0, =8.0.0, =8.0.0, =8.0.0, =8.2.0, =8.19.16 - org.ff4j:ff4j-store-elastic =2.1 - org.opennms.elasticsearch:elasticsearch-drift-plugin-8.18.2 =2.0.7 and more Source cves...
Elastic Elasticsearch DoS Vulnerability (ESA-2022-07)
Elastic Elasticsearch is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2022-23712
A Denial of Service flaw was discovered in Elasticsearch. Using this vulnerability, an unauthenticated attacker could forcibly shut down an Elasticsearch node with a specifically formatted network request...
CVE-2022-23712
Elasticsearch contains a Denial of Service vulnerability (CVE-2022-23712) that allows an unauthenticated attacker to forcefully shut down a node by sending a specifically formatted network request. Public sources consolidate that vulnerable versions are 8.0.0 through 8.2.1 (inclusive), with the i...