Elastic Elasticsearch 7.17.20

CPE Details

Elastic Elasticsearch 7.17.20
7.17.20
2024-07-29
12h10 +00:00
2024-07-29
12h10 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:elastic:elasticsearch:7.17.20:*:*:*:*:*:*:*

Informations

Vendor

elastic

Product

elasticsearch

Version

7.17.20

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-43709 2025-01-21 11h00 +00:00 An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQL function.
7.5
High
CVE-2024-23444 2024-07-31 17h26 +00:00 It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed in the command invocation.
7.5
High