Security News > 2015 > May > Elasticsearch Honeypot Snares 8,000 Attacks Against RCE Vulnerability (Threatpost)

Elasticsearch Honeypot Snares 8,000 Attacks Against RCE Vulnerability (Threatpost)

2015-05-11 17:18

Hackers are exploiting a remote code execution vulnerability in Elasticsearch, according to one researcher who published logs from a honeypot he built showing 8,000 attempts to exploit the bug.

News URL

http://threatpost.com/elasticsearch-honeypot-snares-8000-attacks-against-rce-vulnerability/112715

#attack #honeypot #RCE #threatpost #vulnerability

Related news

Critical PHP RCE vulnerability mass exploited in new attacks (source)
PostgreSQL Vulnerability Exploited Alongside BeyondTrust Zero-Day in Targeted Attacks (source)
CISA Flags Craft CMS Vulnerability CVE-2025-23209 Amid Active Attacks (source)
MITRE Caldera RCE vulnerability with public PoC fixed, patch ASAP! (CVE-2025–27364) (source)
Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
PHP-CGI RCE Flaw Exploited in Attacks on Japan's Tech, Telecom, and E-Commerce Sectors (source)
Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks (source)
Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
Critical Veeam Backup & Replication RCE vulnerability fixed, patch ASAP! (CVE-2025-23120) (source)
Infoseccers criticize Veeam over critical RCE vulnerability and a failing blacklist (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Elasticsearch		8	0	7	4	0	11

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.