Browse Security Advisories
Security Advisories for org.elasticsearch:elasticsearch Clear Filters
Moderate
4 months ago
Elasticsearch Vulnerable to Stack Overflow due to a Large Recursion
maven
org.elasticsearch:elasticsearch
Moderate
4 months ago
Elasticsearch Potential Node Crash due to Large Recursion in `innerForbidCircularReferences` Function
maven
org.elasticsearch:elasticsearch
Moderate
7 months ago
Elasticsearch allocation of resources without limits or throttling leads to crash
maven
org.elasticsearch:elasticsearch
Moderate
8 months ago
Elasticsearch Incorrect Authorization vulnerability
maven
org.elasticsearch:elasticsearch
Moderate
about 1 year ago
Elasticsearch stores private key on disk unencrypted
maven
org.elasticsearch:elasticsearch
Moderate
about 1 year ago
Elasticsearch Insertion of Sensitive Information into Log File
maven
org.elasticsearch:elasticsearch
Moderate
about 1 year ago
Elasticsearch StackOverflow vulnerability
maven
org.elasticsearch:elasticsearch
Moderate
about 1 year ago
Elasticsearch Remote Cluster Search Cross Cluster API Key insufficient restrictions
maven
org.elasticsearch:elasticsearch
Moderate
over 1 year ago
Elasticsearch Uncaught Exception leading to crash
maven
org.elasticsearch:elasticsearch
Moderate
over 1 year ago
Elasticsearch Incorrect Authorization vulnerability
maven
org.elasticsearch:elasticsearch
Moderate
over 1 year ago
Elasticsearch Uncontrolled Resource Consumption vulnerability
maven
org.elasticsearch:elasticsearch
Moderate
over 1 year ago
Elasticsearch Improper Handling of Exceptional Conditions
maven
org.elasticsearch:elasticsearch
Moderate
almost 2 years ago
Elasticsearch allows insertion of sensitive information into log files when using deprecated URIs
maven
org.elasticsearch:elasticsearch
High
almost 2 years ago
Elasticsearch vulnerable to Uncontrolled Resource Consumption
maven
org.elasticsearch:elasticsearch
Moderate
almost 2 years ago
Elasticsearch vulnerable to stack overflow in the search API
maven
org.elasticsearch:elasticsearch
High
about 3 years ago
Improper Check for Unusual or Exceptional Conditions in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Insertion of Sensitive Information into Log File in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Improper privilege management in elasticsearch
maven
org.elasticsearch:elasticsearch
High
about 3 years ago
Improper Privilege Management in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Concurrent Execution using Shared Resource with Improper Synchronization in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Improper Limitation of a Pathname to a Restricted Directory in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Elasticsearch Improper Access Control vulnerability
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Cross-site scripting in Elasticsearch
maven
org.elasticsearch:elasticsearch
High
about 3 years ago
Improper Access Control in Elasticsearch
maven
org.elasticsearch:elasticsearch
High
about 3 years ago
Improper Access Control in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Improper Limitation of a Pathname to a Restricted Directory in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Improper Restriction of XML External Entity Reference in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 3 years ago
Elasticsearch subject to cross site scripting
maven
org.elasticsearch:elasticsearch
High
about 3 years ago
Exposure of Sensitive Information to an Unauthorized Actor in Elasticsearch
maven
org.elasticsearch:elasticsearch
High
about 3 years ago
Improper Access Control in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
almost 4 years ago
Exposure of sensitive information in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
about 4 years ago
API information disclosure flaw in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
over 4 years ago
Insufficiently Protected Credentials in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
over 4 years ago
Privilege Escalation Flaw in Elasticsearch
maven
org.elasticsearch:elasticsearch
Low
over 4 years ago
Privilege Context Switching Error in Elasticsearch
maven
org.elasticsearch:elasticsearch
Moderate
over 4 years ago
Exposure of Sensitive Information to an Unauthorized Actor
maven
org.elasticsearch:elasticsearch
Filter by Severity
Filter by Ecosystem
maven
6,718
packagist
5,368
pypi
4,856
npm
4,209
go
2,847
nuget
1,702
cargo
1,072
rubygems
927
hex
37
swift
35
actions
32
pub
10
Filter by Package
tensorflow
433
tensorflow-gpu
427
tensorflow-cpu
423
moodle/moodle
418
magento/community-edition
300
Microsoft.ChakraCore
247
org.jenkins-ci.main:jenkins-core
239
typo3/cms
190
org.apache.tomcat:tomcat
138
com.liferay.portal:release.portal.bom
121
pimcore/pimcore
120
com.liferay.portal:release.dxp.bom
120
dolibarr/dolibarr
116
github.com/mattermost/mattermost/server/v8
115
typo3/cms-core
111
Django
107
phpmyadmin/phpmyadmin
107
drupal/core
103
microweber/microweber
103
magento/project-community-edition
100
silverstripe/framework
92
apache-airflow
85
drupal/drupal
83
librenms/librenms
82
thorsten/phpmyfaq
73
Plone
72
com.fasterxml.jackson.core:jackson-databind
69
symfony/symfony
69
concrete5/concrete5
67
github.com/usememos/memos
66
salt
65
ansible
63
actionpack
61
shopware/platform
58
org.apache.struts:struts2-core
57
apache-superset
57
github.com/grafana/grafana
56
mlflow
53
craftcms/cms
52
org.keycloak:keycloak-core
50
nova
48
github.com/hashicorp/vault
48
baserproject/basercms
47
nokogiri
46
django
46
org.apache.tomcat.embed:tomcat-embed-core
46
shopware/core
45
gradio
44
mautic/core
44
github.com/rancher/rancher
44
vyper
44
org.xwiki.platform:xwiki-platform-oldcore
43
nilsteampassnet/teampass
42
rdiffweb
42
org.keycloak:keycloak-services
42
matrix-synapse
42
k8s.io/kubernetes
41
plone
41
showdoc/showdoc
41
mantisbt/mantisbt
41
org.elasticsearch:elasticsearch
41
froxlor/froxlor
40
github.com/mattermost/mattermost-server/v6
39
intelliants/subrion
39
directus
38
com.thoughtworks.xstream:xstream
37
snipe/snipe-it
36
com.jfinal:jfinal
36
net.mingsoft:ms-mcms
36
moin
35
github.com/answerdev/answer
34
io.undertow:undertow-core
34
org.jenkins-ci.plugins:script-security
34
zendframework/zendframework1
34
parse-server
33
gogs.io/gogs
33
keystone
32
opencv-contrib-python
31
github.com/hashicorp/nomad
31
github.com/argoproj/argo-cd
31
opencv-python
31
github.com/cilium/cilium
31
github.com/argoproj/argo-cd/v2
31
Pillow
31
github.com/docker/docker
31
shopware/shopware
30
getgrav/grav
30
github.com/hashicorp/consul
29
rack
29
github.com/mattermost/mattermost-server
29
org.apache.solr:solr-core
28
electron
28
mediawiki/core
28
org.opencms:opencms-core
27
centreon/centreon
27
openssl-src
26
next
26
org.springframework.security:spring-security-core
26
pillow
26
prestashop/prestashop
26
open-webui
25
org.eclipse.jetty:jetty-server
25
rubygems-update
25
github.com/traefik/traefik/v2
25
contao/core-bundle
25
pocketmine/pocketmine-mp
24
magento/core
24
getkirby/cms
24
surrealdb
24
org.keycloak:keycloak-parent
24
laravel/framework
23
phpoffice/phpexcel
23
zendframework/zendframework
23
puppet
23
simplesamlphp/simplesamlphp
23
grumpydictator/firefly-iii
23
remdex/livehelperchat
23
vllm
23
org.bouncycastle:bcprov-jdk14
22
Microsoft.AspNetCore.App.Runtime.win-x64
22
@openzeppelin/contracts-upgradeable
22
org.apache.openmeetings:openmeetings-parent
22
tribalsystems/zenario
22
ckb
22
pyload-ng
22
DotNetNuke.Core
22
Microsoft.AspNetCore.App.Runtime.win-x86
22
activerecord
21
org.apache.tomcat:tomcat-catalina
21
github.com/goharbor/harbor
21
@openzeppelin/contracts
21
org.apache.nifi:nifi
21
Microsoft.AspNetCore.App.Runtime.win-arm
21
github.com/ethereum/go-ethereum
21
phpoffice/phpspreadsheet
21
glance
21
aim
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
cockpit-hq/cockpit
20
golang.org/x/net
20
funadmin/funadmin
20
org.xwiki.platform:xwiki-platform-web-templates
20
wasmtime
20
code.gitea.io/gitea
20
langchain
20
github.com/zitadel/zitadel
19
topthink/framework
19
helm.sh/helm/v3
19
deno
19
Microsoft.AspNetCore.App.Runtime.win-arm64
19
Microsoft.AspNetCore.App.Runtime.osx-x64
19
Microsoft.AspNetCore.App.Runtime.linux-x64
19
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
19
Microsoft.AspNetCore.App.Runtime.linux-arm64
19
Microsoft.AspNetCore.App.Runtime.linux-arm
19
org.apache.tomcat:tomcat-coyote
19
neutron
19
mercurial
18
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
18
com.vaadin:vaadin-bom
18
forkcms/forkcms
18
genix/cms
18
contao/contao
18
org.apache.jspwiki:jspwiki-main
18
mindsdb
18
cobbler
18
cakephp/cakephp
17
symfony/security
17
calibreweb
17
github.com/traefik/traefik/v3
17
org.springframework:spring-core
17
cryptography
17
notebook
17
org.apache.inlong:manager-pojo
17
openmage/magento-lts
17
typo3/cms-backend
17
yetiforce/yetiforce-crm
17
opencart/opencart
17
OctoPrint
17
francoisjacquet/rosariosis
17
org.apache.geode:geode-core
17
ezsystems/ezpublish-kernel
17
Microsoft.NetCore.App.Runtime.win-x86
16
sequelize
16
Microsoft.NetCore.App.Runtime.win-x64
16
org.apache.dubbo:dubbo
16
phpbb/phpbb
16
org.apache.ranger:ranger
16
october/system
16
org.apache.activemq:activemq-client
16
lollms
16
Microsoft.NetCore.App.Runtime.win-arm64
16
rusqlite
16
github.com/openfga/openfga
16
ethyca-fides
16
paddlepaddle
16
PaddlePaddle
16
org.bouncycastle:bcprov-jdk15
16
tinymce
16
Microsoft.NetCore.App.Runtime.win-arm
16