Vulnerabilities > Elastic > Elasticsearch > 8.13.1

DATE CVE VULNERABILITY TITLE RISK
2025-01-21 CVE-2024-43709 Allocation of Resources Without Limits or Throttling vulnerability in Elastic Elasticsearch
An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQL function.
network
low complexity
elastic CWE-770
7.5
2024-06-13 CVE-2024-37280 Out-of-bounds Write vulnerability in Elastic Elasticsearch
A flaw was discovered in Elasticsearch, affecting document ingestion when an index template contains a dynamic field mapping of “passthrough” type.
network
low complexity
elastic CWE-787
4.9