Lucene search
+L

4 matches found

Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.8 views

CVE-2022-41917 Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch

OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana. OpenSearch allows users to specify a local file when defining text analyzers to process data for text analysis. An issue in the implementation of this feature allows certain specially crafted queries to return a...

4.3CVSS4.5AI score0.00522EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.50 views

CVE-2022-41917 Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch

OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana. OpenSearch allows users to specify a local file when defining text analyzers to process data for text analysis. An issue in the implementation of this feature allows certain specially crafted queries to return a...

4.3CVSS4.8AI score0.00522EPSS
Exploits0References2
CVE
CVE
added 2022/11/15 12:0 a.m.96 views

CVE-2022-41917

OpenSearch CVE-2022-41917 is an information-disclosure flaw in OpenSearch where an incorrect error-handling path allows certain crafted REST queries to read the first line from arbitrary text files, limited to files readable under the Java Security Manager policy. Affected versions are OpenSearch...

4.3CVSS4.4AI score0.00522EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2022/11/15 12:0 a.m.43 views

CVE-2022-41917

OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana. OpenSearch allows users to specify a local file when defining text analyzers to process data for text analysis. An issue in the implementation of this feature allows certain specially crafted queries to return a...

4.3CVSS5.5AI score0.00522EPSS
Exploits0
Rows per page
Query Builder