Vulnerability Details CVE-2015-5531
Directory traversal vulnerability in Elasticsearch before 1.6.1 allows remote attackers to read arbitrary files via unspecified vectors related to snapshot API calls.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.842
EPSS Ranking 99.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://packetstormsecurity.com/files/132721/Elasticsearch-Directory-Traversal.html
- http://packetstormsecurity.com/files/133797/ElasticSearch-Path-Traversal-Arbitrary-File-Download.html
- http://packetstormsecurity.com/files/133964/ElasticSearch-Snapshot-API-Directory-Traversal.html
- http://www.securityfocus.com/archive/1/536017/100/0/threaded
- http://www.securityfocus.com/bid/75935
- https://www.elastic.co/community/security/
- https://www.exploit-db.com/exploits/38383/
- http://packetstormsecurity.com/files/132721/Elasticsearch-Directory-Traversal.html
- http://packetstormsecurity.com/files/133797/ElasticSearch-Path-Traversal-Arbitrary-File-Download.html
- http://packetstormsecurity.com/files/133964/ElasticSearch-Snapshot-API-Directory-Traversal.html
- http://www.securityfocus.com/archive/1/536017/100/0/threaded
- http://www.securityfocus.com/bid/75935
- https://www.elastic.co/community/security/
- https://www.exploit-db.com/exploits/38383/
Products affected by CVE-2015-5531
-
cpe:2.3:a:elasticsearch:elasticsearch:1.1.1
-
cpe:2.3:a:elasticsearch:elasticsearch:1.2.0
-
cpe:2.3:a:elasticsearch:elasticsearch:1.3.7
-
cpe:2.3:a:elasticsearch:elasticsearch:1.4.0
-
cpe:2.3:a:elasticsearch:elasticsearch:1.4.1
-
cpe:2.3:a:elasticsearch:elasticsearch:1.4.2
-
cpe:2.3:a:elasticsearch:elasticsearch:1.4.4
-
cpe:2.3:a:elasticsearch:elasticsearch:1.5.0
-
cpe:2.3:a:elasticsearch:elasticsearch:1.5.1
-
cpe:2.3:a:elasticsearch:elasticsearch:1.6.0