org.elasticsearch:elasticsearch vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-37731Mediumorg.elasticsearch:elasticsearch: Elasticsearch PKI Realm Authentication Bypass Vulnerability Allows User Impersonation Through…CVE-2025-37727Mediumorg.elasticsearch:elasticsearch: Elasticsearch: Insertion of Sensitive Information into Log File via reindex APICVE-2024-52979Mediumorg.elasticsearch:elasticsearch: Elasticsearch Uncontrolled Resource Consumption VulnerabilityCVE-2024-52981Mediumorg.elasticsearch:elasticsearch: Elasticsearch Vulnerable to Stack Overflow due to a Large RecursionCVE-2024-52980Mediumorg.elasticsearch:elasticsearch: Elasticsearch Potential Node Crash due to Large Recursion in `innerForbidCircularReferences`…CVE-2024-43709Mediumorg.elasticsearch:elasticsearch: Elasticsearch allocation of resources without limits or throttling leads to crashCVE-2024-12539Mediumorg.elasticsearch:elasticsearch: Elasticsearch Incorrect Authorization vulnerabilityCVE-2024-23444Mediumorg.elasticsearch:elasticsearch: Elasticsearch stores private key on disk unencryptedCVE-2023-49921Mediumorg.elasticsearch:elasticsearch: Elasticsearch Insertion of Sensitive Information into Log FileCVE-2024-37280Mediumorg.elasticsearch:elasticsearch: Elasticsearch StackOverflow vulnerabilityCVE-2024-23445Mediumorg.elasticsearch:elasticsearch: Elasticsearch Remote Cluster Search Cross Cluster API Key insufficient restrictionsCVE-2024-23449Mediumorg.elasticsearch:elasticsearch: Elasticsearch Uncaught Exception leading to crashCVE-2024-23451Mediumorg.elasticsearch:elasticsearch: Elasticsearch Incorrect Authorization vulnerabilityCVE-2024-23450Mediumorg.elasticsearch:elasticsearch: Elasticsearch Uncontrolled Resource Consumption vulnerabilityCVE-2023-46673Mediumorg.elasticsearch:elasticsearch: Elasticsearch Improper Handling of Exceptional ConditionsCVE-2023-31417Mediumorg.elasticsearch:elasticsearch: Elasticsearch allows insertion of sensitive information into log files when using deprecated URIsCVE-2023-31418Highorg.elasticsearch:elasticsearch: Elasticsearch vulnerable to Uncontrolled Resource ConsumptionCVE-2023-31419Mediumorg.elasticsearch:elasticsearch: Elasticsearch vulnerable to stack overflow in the search APICVE-2022-23712Highorg.elasticsearch:elasticsearch: Improper Check for Unusual or Exceptional Conditions in ElasticsearchCVE-2021-22137Mediumorg.elasticsearch:elasticsearch: Exposure of Sensitive Information to an Unauthorized Actor in ElasticsearchCVE-2020-7021Mediumorg.elasticsearch:elasticsearch: Insertion of Sensitive Information into Log File in ElasticsearchCVE-2020-7019Mediumorg.elasticsearch:elasticsearch: Improper privilege management in elasticsearchCVE-2020-7009Highorg.elasticsearch:elasticsearch: Improper Privilege Management in ElasticsearchCVE-2019-7619Mediumorg.elasticsearch:elasticsearch: Exposure of Sensitive Information to an Unauthorized Actor in ElasticsearchCVE-2019-7614Mediumorg.elasticsearch:elasticsearch: Concurrent Execution using Shared Resource with Improper Synchronization in Elasticsearch

Stop the waste.
Protect your environment with Kodem.