Uncontrolled Recursion Vulnerability in Elasticsearch Grok Parser
CVE-2021-22144

6.5MEDIUM

Key Information:

Vendor
Elastic
Status
Elasticsearch
Vendor
CVE Published:
26 July 2021

Summary

In Elasticsearch, an uncontrolled recursion vulnerability was discovered in the Grok parser present in versions prior to 7.13.3 and 6.8.17. This flaw allows a malicious actor, capable of submitting arbitrary queries, to construct a specially crafted Grok query that could trigger a denial of service by crashing the Elasticsearch node. It is crucial for users of affected versions to apply the relevant updates to mitigate this risk.

References

https://www.oracle.com/security-alerts/cpuapr2022.html
x_refsource_MISC
https://discuss.elastic.co/t/elasticsearch-7-13-3-and-6-8...
x_refsource_MISC
https://security.netapp.com/advisory/ntap-20210827-0006/
x_refsource_CONFIRM

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.