TROYANOSYVIRUS
Voltar para CVEs

CVE-2015-1427

CRITICALCISA KEV
9.8

Descricao

The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script.

Detalhes CVE

Pontuacao CVSS v3.19.8
SeveridadeCRITICAL
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado2/17/2015
Ultima modificacao4/22/2026
Fontekev
Avistamentos honeypot0

CISA KEV

FornecedorElastic
ProdutoElasticsearch
Nome da vulnerabilidadeElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
Data inclusao KEV2022-03-25
Prazo de remediacao2022-04-15
Uso em ransomwareUnknown

Produtos afetados

elastic:elasticsearchredhat:fuse

Referencias

http://packetstormsecurity.com/files/130368/Elasticsearch-1.3.7-1.4.2-Sandbox-Escape-Command-Execution.html(cve@mitre.org)
http://packetstormsecurity.com/files/130784/ElasticSearch-Unauthenticated-Remote-Code-Execution.html(cve@mitre.org)
http://www.elasticsearch.com/blog/elasticsearch-1-4-3-1-3-8-released/(cve@mitre.org)
http://www.securityfocus.com/archive/1/534689/100/0/threaded(cve@mitre.org)
http://www.securityfocus.com/bid/72585(cve@mitre.org)
https://access.redhat.com/errata/RHSA-2017:0868(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/100850(cve@mitre.org)
https://www.elastic.co/community/security/(cve@mitre.org)
http://packetstormsecurity.com/files/130368/Elasticsearch-1.3.7-1.4.2-Sandbox-Escape-Command-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/130784/ElasticSearch-Unauthenticated-Remote-Code-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.elasticsearch.com/blog/elasticsearch-1-4-3-1-3-8-released/(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/534689/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/72585(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2017:0868(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/100850(af854a3a-2127-422b-91ae-364da2661108)
https://www.elastic.co/community/security/(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-1427(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.