CVE-2023-31418
published 2023-10-26CVE-2023-31418: An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to…
PriorityP340high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
ITW
Exploited in the wild
EPSS
1.23%
65.2th percentile
An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| elastic | elastic_cloud_enterprise | <= 2.13.3 | — |
| elastic | elastic_cloud_enterprise | — | — |
| elastic | elasticsearch | <= 7.17.12 | — |
| elastic | elasticsearch | — | — |
| elastic | elasticsearch | >= 2.13.3 < 3.6.0 | 3.6.0 |
| elastic | elasticsearch | >= 8.0.0 < 8.8.2 | 8.8.2 |
| elastic | elasticsearch | 8.0.0 – 8.8.2 | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ghsa7.5HIGH
osv7.5HIGH
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
elasticsearch: uncontrolled resource consumption
vendor_redhat·2023-10-26·CVSS 7.5
CVE-2023-31418 [HIGH] CWE-400 elasticsearch: uncontrolled resource consumption
elasticsearch: uncontrolled resource consumption
An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. This flaw allows an unauthenticated user to force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests.
Package: openshift-logging/elasticsearch6-rhel8 (Logging Subsystem for Red Hat OpenShift) - Not affec
OSV
Elasticsearch vulnerable to Uncontrolled Resource Consumption
osv·2023-10-26
CVE-2023-31418 [HIGH] Elasticsearch vulnerable to Uncontrolled Resource Consumption
Elasticsearch vulnerable to Uncontrolled Resource Consumption
An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
GHSA
Elasticsearch vulnerable to Uncontrolled Resource Consumption
ghsa·2023-10-26
CVE-2023-31418 [HIGH] CWE-400 Elasticsearch vulnerable to Uncontrolled Resource Consumption
Elasticsearch vulnerable to Uncontrolled Resource Consumption
An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
OSV
CVE-2023-31418: An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer
osv·2023-10-26·CVSS 7.5
CVE-2023-31418 [HIGH] CVE-2023-31418: An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer
An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
OSV
OpenSearch uncontrolled resource consumption
osv·2023-10-17·CVSS 7.5
CVE-2023-31418 [HIGH] OpenSearch uncontrolled resource consumption
OpenSearch uncontrolled resource consumption
### Impact
An issue has been identified with how OpenSearch handled incoming requests on the HTTP layer. An unauthenticated user could force an OpenSearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests.
The issue was identified by Elastic Engineering and corresponds to security advisory [ESA-2023-13](https://discuss.elastic.co/t/elasticsearch-8-9-0-7-17-13-security-update/343616) (CVE-2023-31418).
### Mitigation
Versions 1.3.14 and 2.11.0 contain a fix for this issue.
### For more information
If you have any questions or comments about this advisory, please contact AWS/Amazon Security via our issue reporting page (https://aws.amazon.com/security/vulnerability-reporting/) or directly via email t
GHSA
OpenSearch uncontrolled resource consumption
ghsa·2023-10-17·CVSS 7.5
CVE-2023-31418 [HIGH] CWE-400 OpenSearch uncontrolled resource consumption
OpenSearch uncontrolled resource consumption
### Impact
An issue has been identified with how OpenSearch handled incoming requests on the HTTP layer. An unauthenticated user could force an OpenSearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests.
The issue was identified by Elastic Engineering and corresponds to security advisory [ESA-2023-13](https://discuss.elastic.co/t/elasticsearch-8-9-0-7-17-13-security-update/343616) (CVE-2023-31418).
### Mitigation
Versions 1.3.14 and 2.11.0 contain a fix for this issue.
### For more information
If you have any questions or comments about this advisory, please contact AWS/Amazon Security via our issue reporting page (https://aws.amazon.com/security/vulnerability-reporting/) or directly via email t
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://discuss.elastic.co/t/elasticsearch-8-9-0-7-17-13-security-update/343616https://security.netapp.com/advisory/ntap-20231130-0005/https://www.elastic.co/community/securityhttps://discuss.elastic.co/t/elasticsearch-8-9-0-7-17-13-security-update/343616https://security.netapp.com/advisory/ntap-20231130-0005/https://www.elastic.co/community/security
2023-10-26
Published
Exploited in the wild