203 matches found
EUVD-2017-17399
Malware in sbrugna...
EUVD-2019-4911
Malware in sbrugna...
EUVD-2021-1968
Malware in sbrugna...
EUVD-2021-0871
Malware in sbrugna...
EUVD-2025-17664
Malicious code in bioql PyPI...
EUVD-2023-0551
Malicious code in bioql PyPI...
EUVD-2023-2899
Malicious code in bioql PyPI...
EUVD-2022-3523
Malicious code in bioql PyPI...
EUVD-2025-29429
Malicious code in bioql PyPI...
EUVD-2023-2540
Malicious code in bioql PyPI...
EUVD-2024-20949
Malicious code in bioql PyPI...
EUVD-2023-1133
Malicious code in bioql PyPI...
EUVD-2022-3790
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2020-7019
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same...
Linux Distros Unpatched Vulnerability : CVE-2020-7020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Elasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or Field Level Security is used. Search queries do not properly...
Linux Distros Unpatched Vulnerability : CVE-2021-20328
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Specific versions of the Java driver that support client-side field level encryption CSFLE fail to perform correct host name verification on the KMS server's...
Sensitive Information Disclosure
org.opensearch.plugin:opensearch-security is vulnerable to Sensitive Information Disclosure. The vulnerability is due to improper enforcement of Field Level Security FLS rules due to member attributes of excluded objects still being accessible through search queries, allowing reconstruction of...
Information Exposure
Overview Affected versions of this package are vulnerable to Information Exposure in the application of Field Level Security FLS rules to fields that are members of an object within a source document. An attacker can gain unauthorized access to sensitive data by reconstructing the contents of...
GHSA-2RJV-CV85-XHGM OpenSearch unauthorized data access on fields protected by field level security if field is a member of an object
Impact OpenSearch versions 2.19.2 and earlier improperly apply Field Level Security FLS rules on fields which are not at the top level of the source document tree i.e., which are members of a JSON object. If an FLS exclusion rule like object is applied to an object valued attribute in a source...
OpenSearch unauthorized data access on fields protected by field level security if field is a member of an object
Impact OpenSearch versions 2.19.2 and earlier improperly apply Field Level Security FLS rules on fields which are not at the top level of the source document tree i.e., which are members of a JSON object. If an FLS exclusion rule like object is applied to an object valued attribute in a source...