Lucene search
China National Vulnerability DatabaseCNVD-2022-68514HistoryJun 08, 2022 - 12:00 a.m.
Elasticsearch Denial of Service Vulnerability
2022-06-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
0.002 Low
EPSS
Percentile
55.0%
Elasticsearch is a search engine based on the Lucene library. A denial of service vulnerability exists in Elasticsearch versions 8.0.0 (included) through 8.2.1 (not included). An unauthenticated attacker could exploit the vulnerability to forcefully shut down an Elasticsearch node via a network request in a specific format.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ElasticSearch ElasticSearch >=8.0.0, | lt | 8.2.1 |
Related
cvelist
cvelist
CVE-2022-23712
2022-06-06 17:07:29
nvd
nvd
CVE-2022-23712
2022-06-06 18:15:09
openvas
openvas
Elastic Elasticsearch DoS Vulnerability (ESA-2022-07)
2022-06-07 00:00:00
redhatcve
redhatcve
CVE-2022-23712
2022-06-08 16:07:49
osv
osv
BIT-elasticsearch-2022-23712
2024-03-06 10:52:20
CVE-2022-23712
2022-06-06 18:15:09
Improper Check for Unusual or Exceptional Conditions in Elasticsearch
2022-06-07 00:00:33
cve
cve
CVE-2022-23712
2022-06-06 18:15:09
ubuntucve
ubuntucve
CVE-2022-23712
2022-06-06 00:00:00
prion
prion
Design/Logic Flaw
2022-06-06 18:15:00
github
github
Improper Check for Unusual or Exceptional Conditions in Elasticsearch
2022-06-07 00:00:33
veracode
veracode
Denial Of Service (DoS)
2022-06-08 04:18:22
cbl_mariner
cbl_mariner
CVE-2022-23712 affecting package rubygem-elasticsearch 8.2.0-1
2022-07-14 20:59:55
