Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-31419 PoC — Elasticsearch 缓冲区错误漏洞

Source
https://github.com/sqrtZeroKnowledge/Elasticsearch-Exploit-CVE-2023-31419
Associated Vulnerability
Title:Elasticsearch 缓冲区错误漏洞 (CVE-2023-31419)
Description:Elasticsearch是一个基于Lucene库的搜索引擎。 Elasticsearch 存在缓冲区错误漏洞,该漏洞源于 _search API允许特制查询字符串导致堆栈溢出并最终导致拒绝服务。
Description
Elasticsearch Stack Overflow Vulnerability
Readme
# Elasticsearch StackOverflow vulnerability

A flaw was discovered in Elasticsearch, affecting the `_search` API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.

Affected Versions:

Elasticsearch versions from 7.0.0 to 7.17.12 and from 8.0.0 to 8.9.0

Solutions and Mitigations:

The issue is resolved in Elasticsearch 7.17.13 and 8.9.1

**CVSSv3:** 6.5 (Medium) - AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H  
**CVE ID:** CVE-2023-31419

Ref: [Link](https://discuss.elastic.co/t/elasticsearch-8-9-1-7-17-13-security-update/343297)

## Proof-of-concept

https://github.com/sqrtZeroKnowledge/Elasticsearch-Exploit-CVE-2023-31419/assets/31594437/52905c60-01e2-4bdb-b6dc-c51267963d7e
File Snapshot

 [4.0K]  /data/pocs/25f6df9f30963a65407db1d9a68b07b0b8b881af
├── [1.3K]  exploit.py
├── [4.0K]  poc
│   └── [3.0M]  DoS.mp4
└── [ 734]  README.md

1 directory, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.