Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
NVDKnown Exploited Vulnerability
CVE-2015-1427, Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands.
The following remediation steps are recommended / required by April 15, 2022: Apply updates per vendor instructions.