CVE-2021-22145 PoC — Elastic 安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-22145.yaml

Associated Vulnerability

Title:Elastic 安全漏洞 (CVE-2021-22145)
Description:Elastic是荷兰Elastic公司的一套基于Lucene构建的开源分布式RESTful搜索引擎。该产品主要应用于云计算，并支持通过HTTP使用JSON进行数据索引。 Elastic search 中存在安全漏洞。Elastic Elastic search 可能允许远程身份验证的攻击者获取敏感信息，这是由错误报告功能中的越界读取缺陷引起的。通过发送特制的查询，攻击者可以利用该漏洞从数据缓冲区中获取敏感信息，并利用这些信息对受影响的系统发起进一步的攻击。

Description

ElasticSsarch 7.10.0 to 7.13.3 is susceptible to information disclosure. A user with the ability to submit arbitrary queries can submit a malformed query that results in an error message containing previously used portions of a data buffer. This buffer can contain sensitive information such as Elasticsearch documents or authentication details, thus potentially leading to data modification and/or execution of unauthorized operations.

File Snapshot


 id: CVE-2021-22145

info:
  name: Elasticsearch 7.10.0-7.13.3 - Information Disclosure
  author: dhi

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!