elasticsearch

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Distributed RESTful search engine built on top of Lucene
Version 7.10.1-1 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-1455 7.10.1-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2021-22132 AVG-1455 Medium Yes Information disclosure
Elasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search API. Users who execute an async search will improperly...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-912 6.6.0-1 6.6.1-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2019-7611 AVG-912 High Yes Privilege escalation
A permission issue was found in Elasticsearch when Field Level Security and Document Level Security are disabled and the _aliases, _shrink, or _split...

Advisories

Date Advisory Group Severity Type
25 Feb 2019 ASA-201902-27 AVG-912 High privilege escalation