Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-17397

Malware in sbrugna...

6.5CVSS6.5AI score0.00612EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-1497

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00909EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/10/28 12:0 a.m.14 views

CVE-2024-51508

Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Index...

5.8AI score0.00236EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/03 10:15 p.m.6 views

CVE-2022-23708

A flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “” index permissions access to this index...

4.3CVSS5.8AI score0.00909EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/03/03 10:15 p.m.3 views

UBUNTU-CVE-2022-23708

A flaw was discovered in Elasticsearch 7.17.0’s upgrade assistant, in which upgrading from version 6.x to 7.x would disable the in-built protections on the security index, allowing authenticated users with “” index permissions access to this index...

4.3CVSS5.8AI score0.00909EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/03/03 12:0 a.m.4 views

PT-2022-16218 · Elastic · Elasticsearch

Name of the Vulnerable Software and Affected Versions: Elasticsearch versions 7.16 through 7.17.0 Description: A flaw was discovered in Elasticsearch's upgrade assistant, which occurs when upgrading from version 6.x to 7.x, disabling the in-built protections on the security index. This allows...

4.3CVSS4.3AI score0.00909EPSS
Exploits0References12
NVD
NVD
added 2017/09/29 1:34 a.m.23 views

CVE-2017-8447

An error was found in the X-Pack Security 5.3.0 to 5.5.2 privilege enforcement. If a user has either 'delete' or 'index' permissions on an index in a cluster, they may be able to issue both delete and index requests against that index...

6.5CVSS6.4AI score0.00612EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/09/28 7:0 p.m.24 views

CVE-2017-8447

An error was found in the X-Pack Security 5.3.0 to 5.5.2 privilege enforcement. If a user has either 'delete' or 'index' permissions on an index in a cluster, they may be able to issue both delete and index requests against that index...

6.4AI score0.00612EPSS
Exploits0References1
Rows per page
Query Builder