13 matches found
EUVD-2015-4176
Malware in sbrugna...
EUVD-2024-1914
Malicious code in bioql PyPI...
BIT-ELASTICSEARCH-2024-37280 Elasticsearch StackOverflow vulnerability
A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type. Under certain circumstances, ingesting documents in this index would cause a StackOverflow exception to be thrown and ultimately lead to a Denial of...
Elasticsearch StackOverflow vulnerability
A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type. Under certain circumstances, ingesting documents in this index would cause a StackOverflow exception to be thrown and ultimately lead to a Denial of...
CVE-2024-37280
A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type. Under certain circumstances, ingesting documents in this index would cause a StackOverflow exception to be thrown and ultimately lead to a Denial of...
CVE-2024-37280
A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type. Under certain circumstances, ingesting documents in this index would cause a StackOverflow exception to be thrown and ultimately lead to a Denial of...
CVE-2024-37280
The CVE-2024-37280 entry concerns Elasticsearch where a stack overflow can occur during document ingestion if an index template contains a dynamic field mapping of type “passthrough” (an experimental feature), potentially leading to a Denial of Service. The core details present in connected recor...
OTRS cross-site scripting vulnerability (CNVD-2022-13927)
OTRS is an open source defect tracking and management system software. OTRS suffers from a cross-site scripting vulnerability that originates in a dynamic field that can be configured by OTRS administrators, where malicious JavaScript code can be injected in the error message of a regular...
OTRS 跨站脚本漏洞
OTRS is an open source defect tracking and management system software. OTRS suffers from a cross-site scripting vulnerability that originates in a dynamic field that can be configured by OTRS administrators, where malicious JavaScript code can be injected in the error message of a regular...
UBUNTU-CVE-2021-44923
A null pointer dereference vulnerability exists in gpac 1.1.0 in the gfdumpvrmldynfield.isra function, which causes a segmentation fault and application crash...
CVE-2015-4152
Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...
CVE-2015-4152
Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...
CVE-2015-4152
CVE-2015-4152 describes a directory traversal vulnerability in the Elasticsearch Logstash file output plugin prior to 1.4.3. The issue arises from dynamic field references in the path option, enabling remote attackers to write to arbitrary files with the privileges of the Logstash user. Public so...