ID:4553 - Exploit for Improper access control in Elasticsearch - CVE-2015-1427

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:4553 - Exploit for Improper access control in Elasticsearch - CVE-2015-1427

ID:4553 - Exploit for Improper access control in Elasticsearch - CVE-2015-1427

Published: September 1, 2020


Vulnerability identifier: #VU40890
Vulnerability risk: Medium
CVE-ID: CVE-2015-1427
CWE-ID: CWE-284
Exploitation vector: Remote access
Vulnerable software:
Elasticsearch

Link to public exploit:


Vulnerability description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script.


Remediation

Install update from vendor's website.