elastic

237 tracked vulnerabilities.

CVE-2016-1000219 HIGH
Kibana <4.5.4, 4.1.11 - Info Disclosure
Jun 16, 2017
CVSS 7.5
EPSS 0.01
CVE-2016-1000218 HIGH
Kibana Reporting 2.4.0 - Cross-Site Request Forgery
Jun 16, 2017
CVSS 8.8
EPSS 0.00
CVE-2015-5377 CRITICAL
Elasticsearch < 1.6.1 - Remote Code Execution via Transport Protocol
Mar 06, 2018
CVSS 9.8
EPSS 0.40
CVE-2015-5619 MEDIUM
Logstash <1.4.5-1.5.4 - Info Disclosure
Aug 09, 2017
CVSS 5.9
EPSS 0.00
CVE-2015-5378 HIGH
Logstash <1.5.3, <1.4.4 - Info Disclosure
Jun 27, 2017
CVSS 7.5
EPSS 0.01
CVE-2015-9056 MEDIUM
Kibana < 4.1.3 and 4.2.1 - Cross-Site Scripting
Jun 16, 2017
CVSS 6.1
EPSS 0.00
CVE-2015-8131
Elasticsearch Kibana <4.1.3, <4.2 - CSRF
Dec 07, 2015
EPSS 0.00
CVE-2015-4152
Logstash < 1.4.3 - Path Traversal and Arbitrary File Write via File Output Plugin
Jun 15, 2015
EPSS 0.01
CVE-2015-4093
Kibana 4.x - Cross-Site Scripting
Jun 15, 2015
EPSS 0.00
CVE-2015-1427 CRITICAL KEVNUCLEI
Elasticsearch <1.3.8, <1.4.3 - Command Injection
Feb 17, 2015
CVSS 9.8
EPSS 0.92
CVE-2014-3120 HIGH KEVNUCLEI
Elasticsearch < 1.2 - Remote Code Execution via Dynamic Scripting
Jul 28, 2014
CVSS 8.1
EPSS 0.84
CVE-2014-4326
Elasticsearch Logstash <1.4.2 - RCE
Jul 22, 2014
EPSS 0.01
Products
kibana 103 elasticsearch 47 Kibana 18 logstash 13 elastic_cloud_enterprise 9 x-pack 9 beats 7 Elastic X-Pack Security 6 elastic_agent 5 endpoint_security 5 enterprise_search 5 Logstash 4 Packetbeat 3 apm_agent 3 apm_server 3 APM Server 2 Elastic Defend 2 X-Pack Security 2 apm-server 2 elastic_app_search 2 elastic_beats 2 elastic_cloud_on_kubernetes 2 elasticsearch_x-pack 2 endgame 2 filebeat 2 kibana_x-pack 2 logstash_x-pack 2 Beats 1 Elastic Cloud Enterprise 1 Elastic Package Registry 1
Quick Filters
Critical CVEs With Exploits In CISA KEV