Elastic Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by elastic
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Uncontrolled Search Path Element Vulnerability in Elasticsearch Beats by Elastic
CVE-2025-25011ElasticBeats7HIGHUncontrolled Search Path Element Vulnerability in Beats by Elastic
CVE-2025-0712ElasticApm Server7HIGHImproper Authorization Vulnerability in Kibana by Elastic
CVE-2024-43706ElasticKibana7.6HIGHPrototype Pollution Vulnerability in Kibana by Elastic
CVE-2025-25014ElasticKibana9.1CRITICALPrototype Pollution Vulnerability in Kibana by Elastic
CVE-2024-12556ElasticKibana8.7HIGHPrototype Pollution Vulnerability in Kibana by Elastic
CVE-2025-25015ElasticKibana9.9CRITICALInformation Disclosure in Fleet Server by Elastic
CVE-2024-52975ElasticFleet Server9CRITICALInformation Disclosure in Kibana Affects Elastic Products
CVE-2024-43707ElasticKibana7.7HIGHOutOfMemoryError Vulnerability in Elasticsearch Products by Elastic
CVE-2024-43709ElasticElastic7.5HIGHDeserialization vulnerability in Kibana can lead to arbitrary code execution
CVE-2024-37288ElasticKibana8.8HIGHPrototype Pollution Vulnerability in Kibana Allows Arbitrary Code Execution
CVE-2024-37287ElasticKibanaπΎπ°7.2HIGHUnencrypted Private Keys Generated by elasticsearch-certutil CLI Tool
CVE-2024-23444ElasticElasticsearch7.5HIGHElevated Privileges Granted Through API Key Reuse
CVE-2024-37282ElasticElastic Cloud Enterprise8.1HIGHAPM Server Logs Vulnerable to Sensitive Information Injection
CVE-2024-23448ElasticAPM Server7.5HIGHKibana Insertion of Sensitive Information into Log File
CVE-2023-46671ElasticKibana8HIGHKibana Insertion of Sensitive Information into Log File
CVE-2023-46675ElasticKibana8HIGHScript Processor Vulnerability in Elasticsearch by Elastic
CVE-2023-46673ElasticElasticsearch7.5HIGHAPM Java Agent Local Privilege Escalation
CVE-2021-37942ElasticElastic Apm Java Agent7HIGHElasticsearch uncontrolled resource consumption
CVE-2023-31418ElasticElastic7.5HIGHElasticsearch StackOverflow vulnerability
CVE-2023-31419ElasticElasticπΎπ‘EPSS 12%7.5HIGHBeats, Elastic Agent, APM Server, and Fleet Server Improper Certificate Validation issue
CVE-2023-31421ElasticBeats7.5HIGHKibana Insertion of Sensitive Information into Log File
CVE-2023-31422ElasticKibana7.5HIGHFleet Server Insertion of Sensitive Information into Log File
CVE-2023-46667ElasticFleet Server8.1HIGHArbitrary Code Execution in Kibana by Elastic
CVE-2023-31414ElasticKibana8.8HIGHArbitrary Code Execution Vulnerability in Kibana by Elastic
CVE-2023-31415ElasticKibana8.8HIGH