Security Alert: Vulnerability Found in ElasticSearch
A recent advisory from CERT-FR warns of a critical vulnerability in ElasticSearch, impacting versions 7.x (prior to 7.17.14) and 8.x (prior to 8.10.3). This flaw could be exploited by attackers to trigger a remote denial-of-service incident.
Action Required: Users are urged to refer to ElasticSearch’s security bulletin (ESA-2023-24, dated November 22, 2023) for necessary patches and updates. No attachments were included in the advisory.
CVE Reference: CVE-2023-46673