mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
830 B
830 B
CVE-2024-52980
Description
A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cause the Elasticsearch node to crash.A successful attack requires a malicious user to have read_pipeline Elasticsearch cluster privilege assigned to them.
POC
Reference
No PoCs from references.