Exploit for #VU80874 Stack-based buffer overflow in Elasticsearch

Exploit for #VU80874 Stack-based buffer overflow in Elasticsearch

Published: 2023-09-27 | Updated: 2023-10-07

Vulnerability identifier: #VU80874

Vulnerability risk: Medium

CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2023-31419

CWE-ID: CWE-121

Exploitation vector: Network

Exploits in database: 2

October 7, 2023
- Elasticsearch-CVE-2023-31419 (Elasticsearch DoS CVE-2023-31419 exploit) [Github]
September 27, 2023
- Elasticsearch-Exploit-CVE-2023-31419 (Elasticsearch Stack Overflow Vulnerability) [Github]

Impact: Denial of service

Vulnerable software:
Elasticsearch
Web applications / Other software

Vendor: Elastic Stack