CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Elastic: >> Elasticsearch >> 1.6.0 Security Vulnerabilities

CVE-2015-5377

Elasticsearch before 1.6.1 allows remote attackers to execute arbitrary code via unspecified vectors involving the transport protocol. NOTE: ZDI appears to claim that CVE-2015-3253 and CVE-2015-5377 are the same vulnerability

CVSS Score

9.8

EPSS Score

0.4

Published

2018-03-06

Page 2

Vulnerabilities

Vulnerable Software

Elastic: >> Elasticsearch >> 1.6.0 Security Vulnerabilities

Products

Pricing

Contact Us