CVE-2021-22145 |
Medium |
Yes |
Information disclosure |
A memory disclosure vulnerability was identified in Elasticsearch’s error reporting in versions 7.10.0 up to 7.13.3. A user with the ability to submit... |
CVE-2021-22144 |
Medium |
Yes |
Denial of service |
An uncontrolled recursion vulnerability that could lead to a denial of service attack was identified in the Elasticsearch Grok parser before versions 7.13.3... |
CVE-2021-22137 |
Medium |
Yes |
Information disclosure |
A document disclosure flaw was found in Elasticsearch versions before 6.8.15 and 7.11.2 when Document or Field Level Security is used. Search queries do not... |
CVE-2021-22135 |
Medium |
Yes |
Information disclosure |
In Elasticsearch versions before 7.11.2 and 6.8.15, a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and... |
CVE-2021-22134 |
Low |
Yes |
Information disclosure |
A document disclosure flaw was found in Elasticsearch before version 7.11.0 when Document or Field Level Security is used. Get requests do not properly... |