CVE-2015-3337
CVSS v2.0
4.3 (Medium)
EPSS
96.19 % (100th)
Affected Products
1
Advisories
3
Directory traversal vulnerability in Elasticsearch before 1.4.5 and 1.5.x before 1.5.2, when a site plugin is enabled, allows remote attackers to read arbitrary files via unspecified vectors.
Weaknesses
- CWE-22
- Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2015-05-01 15:59:06
(9 years ago) - Updated Date
-
2015-06-25 16:07:10
(9 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...