TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2015-1427

CRITICALCISA KEV
9.8

Beschreibung

The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script.

CVE Details

CVSS v3.1 Bewertung9.8
SchweregradCRITICAL
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht2/17/2015
Zuletzt geandert4/22/2026
Quellekev
Honeypot-Sichtungen0

CISA KEV

HerstellerElastic
ProduktElasticsearch
SchwachstellennameElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
KEV Aufnahmedatum2022-03-25
Behebungsfrist2022-04-15
Ransomware-NutzungUnknown

Betroffene Produkte

elastic:elasticsearchredhat:fuse

Referenzen

http://packetstormsecurity.com/files/130368/Elasticsearch-1.3.7-1.4.2-Sandbox-Escape-Command-Execution.html(cve@mitre.org)
http://packetstormsecurity.com/files/130784/ElasticSearch-Unauthenticated-Remote-Code-Execution.html(cve@mitre.org)
http://www.elasticsearch.com/blog/elasticsearch-1-4-3-1-3-8-released/(cve@mitre.org)
http://www.securityfocus.com/archive/1/534689/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/bid/72585(cve@mitre.org)
https://access.redhat.com/errata/RHSA-2017:0868(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/100850(cve@mitre.org)
https://www.elastic.co/community/security/(cve@mitre.org)
http://packetstormsecurity.com/files/130368/Elasticsearch-1.3.7-1.4.2-Sandbox-Escape-Command-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/130784/ElasticSearch-Unauthenticated-Remote-Code-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.elasticsearch.com/blog/elasticsearch-1-4-3-1-3-8-released/(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/534689/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/72585(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2017:0868(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/100850(af854a3a-2127-422b-91ae-364da2661108)
https://www.elastic.co/community/security/(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-1427(134c704f-9b21-4f2e-91b3-4a467353bcc0)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.