Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
elastic vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2015-8131
Cross-site request forgery (CSRF) vulnerability in Elasticsearch Kibana prior to 4.1.3 and 4.2.x prior to 4.2.1 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Elastic Kibana
Elastic Kibana 4.2.0
383
VMScore
CVE-2015-9056
Kibana versions before 4.1.3 and 4.2.1 are vulnerable to a XSS attack.
Elastic Kibana
Elastic Kibana 4.2.0
445
VMScore
CVE-2020-7010
Elastic Cloud on Kubernetes (ECK) versions before 1.1.0 generate passwords using a weak random number generator. If an attacker is able to determine when the current Elastic Stack cluster was deployed they may be able to more easily brute force the Elasticsearch credentials gener...
Elastic Elastic Cloud On Kubernetes
445
VMScore
CVE-2016-0780
It exists that cf-release v231 and lower, Pivotal Cloud Foundry Elastic Runtime 1.5.x versions before 1.5.17 and Pivotal Cloud Foundry Elastic Runtime 1.6.x versions before 1.6.18 do not properly enforce disk quotas in certain cases. An attacker could use an improper disk quota v...
Cloudfoundry Cf-release 231
Pivotal Software Cloud Foundry Elastic Runtime 1.5.0
Pivotal Software Cloud Foundry Elastic Runtime 1.5.1
Pivotal Software Cloud Foundry Elastic Runtime 1.5.2
Pivotal Software Cloud Foundry Elastic Runtime 1.5.3
Pivotal Software Cloud Foundry Elastic Runtime 1.5.4
Pivotal Software Cloud Foundry Elastic Runtime 1.5.5
Pivotal Software Cloud Foundry Elastic Runtime 1.5.6
Pivotal Software Cloud Foundry Elastic Runtime 1.5.7
Pivotal Software Cloud Foundry Elastic Runtime 1.5.8
Pivotal Software Cloud Foundry Elastic Runtime 1.5.9
Pivotal Software Cloud Foundry Elastic Runtime 1.5.10
Pivotal Software Cloud Foundry Elastic Runtime 1.5.11
Pivotal Software Cloud Foundry Elastic Runtime 1.5.12
Pivotal Software Cloud Foundry Elastic Runtime 1.5.13
Pivotal Software Cloud Foundry Elastic Runtime 1.5.14
Pivotal Software Cloud Foundry Elastic Runtime 1.5.15
Pivotal Software Cloud Foundry Elastic Runtime 1.5.16
Pivotal Software Cloud Foundry Elastic Runtime 1.6.0
Pivotal Software Cloud Foundry Elastic Runtime 1.6.1
Pivotal Software Cloud Foundry Elastic Runtime 1.6.2
Pivotal Software Cloud Foundry Elastic Runtime 1.6.3
801
VMScore
CVE-2017-6712
A vulnerability in certain commands of Cisco Elastic Services Controller could allow an authenticated, remote malicious user to elevate privileges to root and run dangerous commands on the server. The vulnerability occurs because a "tomcat" user on the system can run ce...
Cisco Elastic Services Controller 2.3.0
Cisco Elastic Services Controller 2.0
Cisco Elastic Services Controller 1.0.0
Cisco Elastic Services Controller 2.1.0
Cisco Elastic Services Controller 1.1.0
Cisco Elastic Services Controller 2.2.0
890
VMScore
CVE-2017-6713
A vulnerability in the Play Framework of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote malicious user to gain full access to the affected system. The vulnerability is due to static, default credentials for the Cisco ESC UI that are shared between ...
Cisco Elastic Services Controller 2.0
Cisco Elastic Services Controller 1.1.0
Cisco Elastic Services Controller 2.2.0
Cisco Elastic Services Controller 1.0.0
Cisco Elastic Services Controller 2.3.0
Cisco Elastic Services Controller 2.1.0
668
VMScore
CVE-2016-0896
Pivotal Cloud Foundry (PCF) Elastic Runtime prior to 1.6.34 and 1.7.x prior to 1.7.12 places 169.254.0.0/16 in the all_open Application Security Group, which might allow remote malicious users to bypass intended network-connectivity restrictions by leveraging access to the 169.25...
Pivotal Software Cloud Foundry Elastic Runtime 1.7.6
Pivotal Software Cloud Foundry Elastic Runtime 1.7.4
Pivotal Software Cloud Foundry Elastic Runtime 1.7.5
Pivotal Software Cloud Foundry Elastic Runtime 1.7.7
Pivotal Software Cloud Foundry Elastic Runtime 1.7.0
Pivotal Software Cloud Foundry Elastic Runtime 1.7.1
Pivotal Software Cloud Foundry Elastic Runtime 1.7.8
Pivotal Software Cloud Foundry Elastic Runtime 1.7.9
Pivotal Software Cloud Foundry Elastic Runtime 1.7.10
Pivotal Software Cloud Foundry Elastic Runtime 1.7.2
Pivotal Software Cloud Foundry Elastic Runtime 1.7.3
Pivotal Software Cloud Foundry Elastic Runtime 1.7.11
Pivotal Software Cloud Foundry Elastic Runtime
383
VMScore
CVE-2016-0927
Cross-site scripting (XSS) vulnerability in Pivotal Cloud Foundry (PCF) Ops Manager prior to 1.6.17 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Pivotal Software Cloud Foundry Elastic Runtime 1.6.5
Pivotal Software Cloud Foundry Elastic Runtime 1.6.7
Pivotal Software Cloud Foundry Elastic Runtime 1.6.14
Pivotal Software Cloud Foundry Elastic Runtime 1.6.0
Pivotal Software Cloud Foundry Elastic Runtime 1.6.1
Pivotal Software Cloud Foundry Elastic Runtime 1.6.2
Pivotal Software Cloud Foundry Elastic Runtime 1.6.3
Pivotal Software Cloud Foundry Elastic Runtime 1.6.8
Pivotal Software Cloud Foundry Elastic Runtime 1.6.9
Pivotal Software Cloud Foundry Elastic Runtime 1.6.10
Pivotal Software Cloud Foundry Elastic Runtime 1.6.11
Pivotal Software Cloud Foundry Elastic Runtime 1.6.12
Pivotal Software Cloud Foundry Elastic Runtime 1.6.4
Pivotal Software Cloud Foundry Elastic Runtime 1.6.6
Pivotal Software Cloud Foundry Elastic Runtime 1.6.13
Pivotal Software Cloud Foundry Elastic Runtime 1.6.15
890
VMScore
CVE-2016-0761
Cloud Foundry Garden-Linux versions prior to v0.333.0 and Elastic Runtime 1.6.x version before 1.6.17 contain a flaw in managing container files during Docker image preparation that could be used to delete, corrupt or overwrite host files and directories, including other containe...
Cloudfoundry Garden Linux
Pivotal Software Cloud Foundry Elastic Runtime 1.6.0
Pivotal Software Cloud Foundry Elastic Runtime 1.6.1
Pivotal Software Cloud Foundry Elastic Runtime 1.6.2
Pivotal Software Cloud Foundry Elastic Runtime 1.6.3
Pivotal Software Cloud Foundry Elastic Runtime 1.6.4
Pivotal Software Cloud Foundry Elastic Runtime 1.6.5
Pivotal Software Cloud Foundry Elastic Runtime 1.6.6
Pivotal Software Cloud Foundry Elastic Runtime 1.6.7
Pivotal Software Cloud Foundry Elastic Runtime 1.6.8
Pivotal Software Cloud Foundry Elastic Runtime 1.6.9
Pivotal Software Cloud Foundry Elastic Runtime 1.6.10
Pivotal Software Cloud Foundry Elastic Runtime 1.6.11
Pivotal Software Cloud Foundry Elastic Runtime 1.6.12
Pivotal Software Cloud Foundry Elastic Runtime 1.6.13
Pivotal Software Cloud Foundry Elastic Runtime 1.6.14
Pivotal Software Cloud Foundry Elastic Runtime 1.6.15
Pivotal Software Cloud Foundry Elastic Runtime 1.6.16
445
VMScore
CVE-2016-5006
The Cloud Controller in Cloud Foundry prior to 239 logs user-provided service objects at creation, which allows malicious users to obtain sensitive user credential information via unspecified vectors.
Pivotal Software Cloud Foundry Elastic Runtime 1.7.4
Pivotal Software Cloud Foundry Elastic Runtime 1.7.6
Pivotal Software Cloud Foundry Elastic Runtime
Pivotal Software Cloud Foundry Elastic Runtime 1.7.0
Pivotal Software Cloud Foundry Elastic Runtime 1.7.1
Pivotal Software Cloud Foundry Elastic Runtime 1.7.2
Pivotal Software Cloud Foundry Elastic Runtime 1.7.7
Pivotal Software Cloud Foundry Elastic Runtime 1.7.8
Pivotal Software Cloud Foundry Elastic Runtime 1.7.9
Pivotal Software Cloud Foundry Elastic Runtime 1.7.10
Pivotal Software Cloud Foundry Elastic Runtime 1.7.3
Pivotal Software Cloud Foundry Elastic Runtime 1.7.5
Pivotal Software Cloud Foundry
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »