org.elasticsearch:elasticsearch@8.13.4 vulnerabilities
-
latest version
8.15.2
-
latest non vulnerable version
-
first published
15 years ago
-
latest version published
24 days ago
-
licenses detected
- (Elastic-2.0 OR SSPL-1.0)[7.11.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.elasticsearch:elasticsearch package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.elasticsearch:elasticsearch is a Distributed, RESTful Search Engine. Affected versions of this package are vulnerable to Stack-based Buffer Overflow through the ingestion of documents when an index template contains a dynamic field mapping of “passthrough” type. An attacker can cause a system to crash ingesting documents in this index. Note: Passthrough fields is an experimental feature. How to fix Stack-based Buffer Overflow? Upgrade |
[8.13.1,8.14.0)
|