Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2021-22145Sensitive Information Exposure in Elasticsearch

CWE-200Sensitive Information ExposureCWE-209Information Exposure via Error MessageCWE-125Out-of-bounds Read8 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
67.9%
top 1.41%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Elastic ElasticsearchOracle Communications Cloud Native Core Automated Test Suite
Timeline
PublishedJul 21
Latest updateMay 24

Description

A memory disclosure vulnerability was identified in Elasticsearch 7.10.0 to 7.13.3 error reporting. A user with the ability to submit arbitrary queries to Elasticsearch could submit a malformed query that would result in an error message returned containing previously used portions of a data buffer. This buffer could contain sensitive information such as Elasticsearch documents or authentication details.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

CVEListV5elastic/elasticsearch7.10.07.13.3
NVDelastic/elasticsearch7.10.07.13.3

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

4
OSV
Generation of Error Message Containing Sensitive Information in Elasticsearch2022-05-24
GHSA
Generation of Error Message Containing Sensitive Information in Elasticsearch2022-05-24
CVEList
CVE-2021-22145: A memory disclosure vulnerability was identified in Elasticsearch 72021-07-21
OSV
CVE-2021-22145: A memory disclosure vulnerability was identified in Elasticsearch 72021-07-21

💥Exploits & PoCs

2
Exploit-DB
ElasticSearch 7.13.3 - Memory disclosure2021-07-23
Nuclei
Elasticsearch 7.10.0-7.13.3 - Information Disclosure

📋Vendor Advisories

1
Red Hat
elasticsearch: memory disclosure in error reporting2021-07-20