[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote code execution vulnerability in Elasticsearch via unspecified vectors - CVE-2015-5377 (rpm)

ID: oval:org.secpod.oval:def:26227Date: (C)2015-08-26   (M)2024-03-25
Class: VULNERABILITYFamily: unix




The host is installed with Elasticsearch before 1.6.1 and is prone to a remote code execution vulnerability. A flaw is present in the application, which doesn't ensure that only trusted applications have access to the transport protocol port. Successful exploitation could allow attackers to execute remote code.

Platform:
Linux
Product:
elasticsearch
Reference:
CVE-2015-5377
CVE    1
CVE-2015-5377

© SecPod Technologies