5 matches found
CVE-2021-31828
An SSRF issue in Open Distro for Elasticsearch ODFE before 1.13.1.0 allows an existing privileged user to enumerate listening services or interact with configured resources via HTTP requests exceeding the Alerting plugin's intended scope...
CVE-2021-31828
An SSRF issue in Open Distro for Elasticsearch ODFE before 1.13.1.0 allows an existing privileged user to enumerate listening services or interact with configured resources via HTTP requests exceeding the Alerting plugin's intended scope...
Server side request forgery (ssrf)
An SSRF issue in Open Distro for Elasticsearch ODFE before 1.13.1.0 allows an existing privileged user to enumerate listening services or interact with configured resources via HTTP requests exceeding the Alerting plugin's intended scope...
CVE-2021-31828
CVE-2021-31828 (ODFE SSRF) affects Open Distro for Elasticsearch (ODFE) until version 1.13.1.0. The issue is an SSRF in the Alerting module that allows an authenticated, existing privileged user to enumerate listening services or interact with configured resources by issuing HTTP requests beyond ...
CVE-2021-31828
An SSRF issue in Open Distro for Elasticsearch ODFE before 1.13.1.0 allows an existing privileged user to enumerate listening services or interact with configured resources via HTTP requests exceeding the Alerting plugin's intended scope...