← Back to Search

Elastic (Elasticsearch)

2022-03-25 · Severity 5/10 — Medium · Unknown
Incident Summary

The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands.

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2022-03-25
Related Breaches

No related breaches in the last 90 days.