Language:
Severity: High
ID: 81816
File Name: elasticsearch_rce_CVE-2015-1427.nasl
Version: 1.15
Type: remote
Family: CGI abuses
Published: 3/13/2015
Updated: 3/28/2022
Supported Sensors: Nessus
Risk Factor: High
Score: 8.9
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2015-1427
CPE: cpe:/a:elasticsearch:elasticsearch
Required KB Items: installed_sw/Elasticsearch
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 2/11/2015
Vulnerability Publication Date: 12/9/2015
CISA Known Exploited Vulnerability Due Dates: 4/15/2022
CANVAS (CANVAS)
Core Impact
Metasploit (ElasticSearch Search Groovy Sandbox Bypass)
CVE: CVE-2015-1427
BID: 72585