Elasticsearch CVE-2018-17247 XML External Entity Injection Vulnerability

Bugtraq ID: 106294
Class: Design Error
CVE: CVE-2018-17247
Remote: Yes
Local: No
Published: Dec 20 2018 12:00AM
Updated: Dec 20 2018 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Elasticsearch Elasticsearch 6.5.1
Elasticsearch Elasticsearch 6.5
Not Vulnerable: Elasticsearch Elasticsearch 6.5.2


 

Privacy Statement
Copyright 2010, SecurityFocus