Lucene search
K

8 matches found

Wolfi
Wolfi
added 2025/03/22 10:43 a.m.18 views

CVE-2024-37280 vulnerabilities

Vulnerabilities for packages: sonarqube-10...

4.9CVSS6AI score0.00529EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.24 views

Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to Elasticsearch denial of service vulnerabilitiy( CVE-2024-37280)

Summary Potential Elasticsearch denial of service vulnerabilitiy CVE-2024-37280 has been identified that may affect IBM Watson CP4D Data Stores. The vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-37280 DESCRIPTION: Elasticsearc...

4.9CVSS7AI score0.00529EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2024/06/13 6:31 p.m.5 views

net.sc8s:elastic-testkit_2.13 (=0.88.0), nl.basjes.parse.useragent:yauaa-elasticsearch-8 (=7.26.1) +8 more potentially affected by CVE-2024-37280 via org.elasticsearch:elasticsearch (>=8.13.1 <=8.13.4)

org.elasticsearch:elasticsearch MAVEN version =8.13.1, =8.13.1, =8.13.1, =8.13.1, =8.13.4 Source cves: CVE-2024-37280 Source advisory: OSV:GHSA-4Q22-422G-M4PJ...

4.9CVSS5.8AI score0.00529EPSS
Exploits0
Chainguard
Chainguard
added 2024/06/13 5:15 p.m.12 views

CVE-2024-37280 vulnerabilities

Vulnerabilities for packages: sonarqube-10, elasticsearch, elasticsearch-fips...

4.9CVSS6.1AI score0.00529EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/06/13 5:15 p.m.19 views

CVE-2024-37280

A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type. Under certain circumstances, ingesting documents in this index would cause a StackOverflow exception to be thrown and ultimately lead to a Denial of...

4.9CVSS5.9AI score0.00529EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 4:26 p.m.390 views

CVE-2024-37280

The CVE-2024-37280 entry concerns Elasticsearch where a stack overflow can occur during document ingestion if an index template contains a dynamic field mapping of type “passthrough” (an experimental feature), potentially leading to a Denial of Service. The core details present in connected recor...

4.9CVSS4.8AI score0.00529EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2024/06/07 7:5 a.m.18 views

CVE-2024-37280

A flaw was found in Elasticsearch that affects document ingestion when an index template contains a dynamic field mapping of the “passthrough” type. Under certain circumstances, ingesting documents in this index can cause a StackOverflow exception to be thrown, leading to a denial of service...

4.9CVSS6.9AI score0.00529EPSS
Exploits0References3
Elastic
Elastic
added 2024/06/07 4:6 a.m.10 views

Elasticsearch 8.14.0 Security Update (ESA-2024-14)

Elasticsearch StackOverflow vulnerability ESA-2024-14 A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type. Under certain circumstances, ingesting documents in this index would cause a StackOverflow...

4.9CVSS6.8AI score0.00529EPSS
Exploits0
Rows per page
Query Builder