org.elasticsearch.plugin:x-pack-security@9.2.2 vulnerabilities
latest version
9.2.4
latest non vulnerable version
first published
5 years ago
latest version published
15 days ago
licenses detected
- [6.8.11,)
package registry
Direct Vulnerabilities
Known vulnerabilities in the org.elasticsearch.plugin:x-pack-security package. This does not include vulnerabilities belonging to this package’s dependencies.
Fix vulnerabilities automatically
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
org.elasticsearch.plugin:x-pack-security is an Elasticsearch Expanded Pack Plugin - Security Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the submission of oversized user settings data. An attacker can exhaust system resources and cause a persistent denial of service by sending excessively large data inputs. How to fix Allocation of Resources Without Limits or Throttling? Upgrade | [,8.19.9)[9.0.0-beta1,9.1.9)[9.2.0,9.2.3) |