← Back to home
wid-sec-w-2026-2180  ·  Published 2026-07-01  ·  View on BSI CERT-Bund ↗

Elasticsearch: Multiple Vulnerabilities allow Denial of Service

CVSS N/A NONE

Risk Summary

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Elasticsearch ausnutzen, um einen Denial of Service Angriff durchzuführen.

Affected Vendors

Open Source

Affected Products (10)

Open Source · Elasticsearch <7.17.24
Open Source · Elasticsearch 7.17.24
Open Source · Elasticsearch <8.15.0
Open Source · Elasticsearch 8.15.0
Open Source · Elasticsearch <8.19.17
Open Source · Elasticsearch 8.19.17
Open Source · Elasticsearch <9.3.6
Open Source · Elasticsearch 9.3.6
Open Source · Elasticsearch <9.4.3
Open Source · Elasticsearch 9.4.3

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more