Lucene search
+L

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-23449

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An uncaught exception in Elasticsearch = 8.4.0 and = 8.4.0 and 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. Th...

5.3CVSS5.2AI score0.00681EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:33 a.m.26 views

Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to Elasticsearch denial of service vulnerabilitiy(CVE-2024-23449)

Summary A potential denial of service vulnerability CVE-2024-23449 has been identified related to Elasticsearch that affects IBM Watson CP4D Data Stores. This vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-23449 DESCRIPTION:...

5.3CVSS5AI score0.00681EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2024/04/03 1:54 a.m.5 views

SUSE CVE-2024-23449

An uncaught exception in Elasticsearch = 8.4.0 and 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to parse the PDF file will crash. This does not happen with password-protected PDF files or with unencrypte...

5.3CVSS6.9AI score0.00681EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/03/29 3:50 p.m.40 views

CVE-2024-23449

A flaw was found in the Elasticsearch package. An uncaught exception occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to parse the PDF file will crash. This does not happen with password-protected PDF files or with...

4.3CVSS7AI score0.00681EPSS
Exploits0References4
OSV
OSV
added 2024/03/29 11:12 a.m.13 views

CVE-2024-23449 Elasticsearch Uncaught Exception

An uncaught exception in Elasticsearch = 8.4.0 and 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to parse the PDF file will crash. This does not happen with password-protected PDF files or with unencrypte...

4.3CVSS6AI score0.00681EPSS
Exploits0References4
CVE
CVE
added 2024/03/29 11:12 a.m.118 views

CVE-2024-23449

CVE-2024-23449 affects Elasticsearch: versions 8.4.0 up to (but not including) 8.11.1 are vulnerable to an uncaught exception when an encrypted PDF is passed to the REST API’s attachment processor, causing the ingest node to crash. The issue does not occur with password-protected or unencrypted P...

5.3CVSS4.3AI score0.00681EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/29 11:12 a.m.46 views

CVE-2024-23449 Elasticsearch Uncaught Exception

An uncaught exception in Elasticsearch = 8.4.0 and 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to parse the PDF file will crash. This does not happen with password-protected PDF files or with unencrypte...

4.3CVSS4.7AI score0.00681EPSS
Exploits0References1
Elastic
Elastic
added 2024/03/29 11:12 a.m.9 views

Elasticsearch 8.11.1 Security Update (ESA-2024-05)

Elasticsearch Uncaught Exception ESA-2024-05 An uncaught exception in Elasticsearch = 8.4.0 and = 8.4.0 and 8.11.1 Solutions and Mitigations: The issue is resolved in version 8.11.1. This requires the attachment processor to be enabled. Users unable to upgrade can ensure that the attachment...

5.3CVSS6.9AI score0.00681EPSS
Exploits0
Rows per page
Query Builder