Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability

NVD

Known Exploited Vulnerability

CVE-2015-1427, Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands.

The following remediation steps are recommended / required by April 15, 2022: Apply updates per vendor instructions.