EUVD-2025-10263

Malicious code in bioql PyPI...

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow.

...

Denial Of Service (DoS)

Elasticsearch is vulnerable to Denial Of Service DoS. The vulnerability is due to unbounded recursion due to improper handling of deeply nested GeometryCollection objects in Well-Known Text WKT format, which allows attackers to craft specially formatted input that triggers a stack overflow and...

CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

BIT-ELASTICSEARCH-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

Elasticsearch Vulnerable to Stack Overflow due to a Large Recursion

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

UBUNTU-CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

CVE-2024-52981

CVE-2024-52981 affects Elasticsearch: a recursive parser for Well-Known Text (WKT) with nested GeometryCollection objects can trigger a stack overflow, leading to DoS. Affected: Elasticsearch 7.17.0–7.17.23 and 8.0–8.15.0. Fixed in 7.17.24 and 8.15.1 or newer. CVSS/NVD indicates high impact on av...

CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

PT-2025-15477 · Unknown · Elasticsearch

Name of the Vulnerable Software and Affected Versions: Elasticsearch affected versions not specified Description: An issue was discovered where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stack overflow. Recommendations: At the...

MySQL: новый Geometric error-based

Привет! я не говорю России, так что я собираюсь объяснить это на английском языке. earlier today, i got some spare time, and played a little with the function GeometryCollection. basically, this function constructs geometry collection. sounds nice. but the interesting part is, we can only use it...

MySQL Community Server 5.1 < 5.1.52 Multiple Denial of Service Vulnerabilities

Binary data 801123.prm...

MySQL Community Server 5.1 < 5.1.52 Multiple Vulnerabilities

The version of MySQL Community Server 5.1 installed on the remote host is earlier than 5.1.52 and thus potentially affected by multiple vulnerabilities: - An error exists in the handling of 'EXPLAIN' for a 'SELECT' statement from a derived table which can cause the server to crash. 54488 - An err...