Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/09/05 9:54 p.m.57 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in elasticsearch-7.10.2.jar

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of elasticsearch-7.10.2.jar Vulnerability Details CVEID:CVE-2023-31418 DESCRIPTION: Elastic Elasticsearch is vulnerable to a denial of service, caused by uncontrolled resource consumption. By sending a moderate...

7.5CVSS6.8AI score0.60679EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/31 11:1 a.m.49 views

Security Bulletin: Netcool Operations Insights 1.6.13 addresses multiple security vulnerabilities.

Summary Netcool Operations Insight v1.6.13 addresses multiple security vulnerabilities, listed in the CVEs below. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2021-31684 DESCRIPTION: netplex JSON Smart is vulnerable to a denial of...

9.8CVSS10AI score0.60679EPSS
Exploits5Affected Software1
RedhatCVE
RedhatCVE
added 2023/11/23 1:57 a.m.95 views

CVE-2023-46673

A flaw was found in Elasticsearch. A malicious script used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API. Mitigation No mitigation is yet available for this flaw...

7.5CVSS6.8AI score0.00844EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2023/11/22 12:30 p.m.6 views

ai.ylyue:yue-library-data-es (>=j11.2.6.0 <=j11.2.6.2), ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=5.3.0 <=6.10.5) +521 more potentially affected by CVE-2023-46673 via org.elasticsearch:elasticsearch (>=7.0.0 <=7.17.13)

org.elasticsearch:elasticsearch MAVEN version =7.0.0, =j11.2.6.0, =5.3.0, =5.6.5, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =6.10.0, =6.10.0, =6.10.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.6.5, =5.7.9 and more Source cves: CVE-2023-46673 Source advisory: OSV:GHSA-285M-VHFQ-XX4H...

7.5CVSS7.2AI score0.00844EPSS
Exploits0
CVE
CVE
added 2023/11/22 9:27 a.m.119 views

CVE-2023-46673

CVE-2023-46673 affects Elastic Elasticsearch. Malformed scripts in the script processor of an Ingest Pipeline can cause an Elasticsearch node to crash when calling the Simulate Pipeline API, enabling a denial of service. The vulnerability is tied to the Simulate Pipeline API handling and may impa...

7.5CVSS7.3AI score0.00844EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/22 9:27 a.m.41 views

CVE-2023-46673

It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API...

6.5CVSS7.6AI score0.00844EPSS
Exploits0References2
OSV
OSV
added 2023/11/22 9:27 a.m.8 views

CVE-2023-46673

It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API...

6.5CVSS7.4AI score0.00844EPSS
Exploits0References4
Elastic
Elastic
added 2023/11/22 9:18 a.m.7 views

Elasticsearch 7.17.14 / 8.10.3 Security Update (ESA-2023-24)

Elasticsearch Improper Handling of Exceptional Conditions ESA-2023-24 It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API. Affected Versions: Elasticsearch versions on or afte...

7.5CVSS7.5AI score0.00844EPSS
Exploits0
Rows per page
Query Builder