Download
| Alert*
|
oval:org.secpod.oval:def:109404
Elasticsearch is a search server based on Lucene. It provides a distributed, multitenant-capable full-text search engine with a RESTful web interface and schema-free JSON documents. Elasticsearch is developed in Java and is released as open source under the terms of the Apache License. It is a flexi ... oval:org.secpod.oval:def:26226 The host is installed with Elasticsearch 1.0.0 before 1.6.1 and is prone to a directory traversal vulnerability. A flaw is present in the application, which fails to handle unspecified vectors related to snapshot API calls. Successful exploitation could allow attackers to read arbitrary files. oval:org.secpod.oval:def:26225 The host is installed with Elasticsearch 1.0.0 before 1.6.1 and is prone to a directory traversal vulnerability. A flaw is present in the application, which fails to handle unspecified vectors related to snapshot API calls. Successful exploitation could allow attackers to read arbitrary files. |
