CVE-2021-22145 – A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error r …

21 July 2021

Vuln ID: CVE-2021-22145

Published: 2021-07-21 15:15:14Z

Description: A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data buffer. This buffer could contain sensitive information such as Elasticsearch documents or authentication details.

Source: NVD.NIST.GOV

Date:

21 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Zoom offers AI-based updates to its Workplace collaboration space18 April 2024
‘MadMxShell’ leverages Google Ads to deploy malware via Windows backdoor18 April 2024
Zoom launches Workplace, an AI-enabled collaboration space18 April 2024
LastPass users targeted in phishing attacks good enough to trick even the savvy18 April 2024
2023 ISO 27001 certificate available in Spanish and French, and 2023 ISO 22301 certificate available in Spanish18 April 2024