Remote Code Execution Vulnerability in Elasticsearch by Elastic
CVE-2015-4165

7.5HIGH

Key Information:

Vendor

Elastic
Status
Elasticsearch
Vendor
CVE Published:
9 August 2017

What is CVE-2015-4165?

Elasticsearch prior to version 1.6.0 contains a vulnerability in its snapshot API that allows remote authenticated users to write to and create arbitrary snapshot metadata files. If an attacker has appropriate access to the Java Virtual Machine on which Elasticsearch is running and if another application on the same system can read from Lucene files, this can lead to potential execution of arbitrary code. This vulnerability highlights the importance of securing both the Elasticsearch instance and any nearby applications that might have access to filesystem operations within the Java environment.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://packetstormsecurity.com/files/132234/Elasticsearch...
x_refsource_MISC
http://www.securityfocus.com/archive/1/535727/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/bid/75113
vdb-entryx_refsource_BID

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.