Lucene search
PRIOn knowledge basePRION:CVE-2015-1427HistoryFeb 17, 2015 - 3:59 p.m.
Design/Logic Flaw
2015-02-1715:59:00
PRIOn knowledge base
www.prio-n.com
8
The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script.
| CPE | Name | Operator | Version |
|---|---|---|---|
| elasticsearch | le | 1.3.7 | |
| elasticsearch | eq | 1.4.0 beta1 | |
| elasticsearch | eq | 1.4.1 | |
| elasticsearch | eq | 1.4.2 | |
| elasticsearch | eq | 1.4.0 |
References
packetstormsecurity.com/files/130368/Elasticsearch-1.3.7-1.4.2-Sandbox-Escape-Command-Execution.html
packetstormsecurity.com/files/130784/ElasticSearch-Unauthenticated-Remote-Code-Execution.html
www.elasticsearch.com/blog/elasticsearch-1-4-3-1-3-8-released/
www.securityfocus.com/archive/1/534689/100/0/threaded
www.securityfocus.com/bid/72585
access.redhat.com/errata/RHSA-2017:0868
exchange.xforce.ibmcloud.com/vulnerabilities/100850
www.elastic.co/community/security/
Related
nessus
nessus
Elasticsearch Groovy Script RCE
2015-03-13 00:00:00
kitploit
kitploit
Infection Monkey - An Automated Pentest Tool
2018-04-29 12:23:00
Infection Monkey v1.6 - An Automated Pentest Tool
2018-11-26 20:54:00
n0where
n0where
Data Center Security Testing Tool: Infection Monkey
2018-03-18 15:03:48
checkpoint_advisories
checkpoint_advisories
Elasticsearch Sandbox Escape Command Execution (CVE-2015-1427)
2015-10-19 00:00:00
attackerkb
attackerkb
CVE-2015-1427
2015-02-17 00:00:00
metasploit
metasploit
ElasticSearch Search Groovy Sandbox Bypass
2015-03-10 04:04:32
veracode
veracode
Arbitrary Shell Command Execution In The Groovy Scripting Engine
2015-02-18 17:22:02
cve
cve
CVE-2015-1427
2015-02-17 15:59:04
canvas
canvas
Immunity Canvas: ELASTICSEARCH_CVE_2015_1427
2015-02-17 15:59:00
packetstorm
packetstorm
ElasticSearch Unauthenticated Remote Code Execution
2015-03-12 00:00:00
ElasticSearch Search Groovy Sandbox Bypass
2015-03-12 00:00:00
myhack58
myhack58
ubuntucve
ubuntucve
CVE-2015-1427
2015-02-17 00:00:00
cisa_kev
cisa_kev
Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
2022-03-25 00:00:00
github
github
Improper Access Control in Elasticsearch
2022-05-14 02:49:44
osv
osv
Improper Access Control in Elasticsearch
2022-05-14 02:49:44
freebsd
freebsd
elasticsearch -- remote OS command execution via Groovy scripting engine
2015-02-11 00:00:00
zdt
zdt
ElasticSearch Search Groovy Sandbox Bypass Exploit
2015-03-12 00:00:00
ElasticSearch Unauthenticated Remote Code Execution Exploit
2015-03-12 00:00:00
threatpost
threatpost
NFL Players and Agents Targeted in Database Extortion Attempt
2017-10-09 09:00:39
Elasticsearch Elastichoney Honeypot Shows 8,000 RCE Attacks
2015-05-11 13:18:29
Windows, Linux Devices Hijacked In Two-Year Cryptojacking Campaign
2021-02-17 21:39:10
securityvulns
securityvulns
Elasticsearch vulnerability CVE-2015-1427
2015-02-22 00:00:00
Elasticsearch restrictions bypass
2015-02-22 00:00:00
nvd
nvd
CVE-2015-1427
2015-02-17 15:59:04
nuclei
nuclei
ElasticSearch - Remote Code Execution
2021-02-15 18:17:25
cvelist
cvelist
CVE-2015-1427
2015-02-17 15:00:00
openvas
openvas
Elasticsearch Groovy Scripting Engine Unauthenticated Remote Code Execution
2015-03-12 00:00:00
exploitdb
exploitdb
ElasticSearch - Search Groovy Sandbox Bypass (Metasploit)
2015-03-16 00:00:00
ElasticSearch - Remote Code Execution
2015-03-11 00:00:00
nmap
nmap
http-vuln-cve2015-1427 NSE Script
2015-05-21 10:02:56
impervablog
impervablog
talosblog
talosblog
avleonov
avleonov
Vulnerability Management at Tinkoff Fintech School
2019-03-04 10:38:31
redhat
redhat