opensearch-project Summary

Latest vulnerabilities published by opensearch-project

12 December 2024

23 August 2024

9 July 2024

16 October 2023

8 May 2023

2 March 2023

3 February 2023

26 January 2023

15 November 2022

11 November 2022

12 August 2022

30 June 2022

No more vulnerabilities to load.

opensearch-project Summary

Vulnerability Published:

Sort By:

12 December 2024

Vulnerability in OpenTelemetry Logs Source Affects Custom Authentication Plugins

23 August 2024

Specially Crafted Parameters Can Lead to External Redirect on Login

9 July 2024

Unintended Access to Private Tenant Resources in OpenSearch Dashboards Reports

Unintended Access to Private Tenant Resources in OpenSearch Observability

16 October 2023

OpenSearch Issue with tenant read-only permissions

8 May 2023

OpenSearch issue with fine-grained access control during extremely rare race conditions

2 March 2023

Time discrepancy in authentication responses in OpenSearch

3 February 2023

Issue in Anomaly Detection with document and field level rules in numerical feature aggregations

26 January 2023

Issue with whitespace in JWT roles in OpenSearch

Field-level security issue with .keyword fields in OpenSearch

15 November 2022

Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch

Issue with fine-grained access control of indices backing data streams

11 November 2022

OpenSearch Notifications is vulnerable to Server-Side Request Forgery (SSRF)

12 August 2022

OpenSearch vulnerable to Improper Authorization of Index Containing Sensitive Information

30 June 2022

Unsafe YAML deserialization in opensearch-ruby