CVE advisoryKnown Exploit
CVE-2014-3120
Elasticsearch Remote Code Execution Vulnerability.
Halo Surface Signal: 3 out of 5 — possibly public-facing.
Elasticsearch's default configuration permits remote attackers to execute arbitrary code. This poses a business risk by potentially allowing unauthorized access and system compromise. The issue stems from dynamic scripting, enabling the execution of MVEL or Java code through the `_search` parameter.