NetDefend IPS
IPS Advisories
NetDefend
Anti-Virus
Anti-Virus Advisories
NetDefend Web Content Filtering
NetDefend IP Reputation
NetDefend Update Center
IPS History
May 24, 2024
May 23, 2024
May 22, 2024
May 16, 2024
May 10, 2024
Anti-Virus History
Feb 12, 2022
Jan 06, 2022
Oct 23, 2021
Aug 29, 2021
Aug 23, 2021







Home > NetDefend Live > NetDefend IPS Service
NetDefend IPS Service
Print
Advisory ID
48463
Name
Elasticsearch.ThrowableObjectInputStream.CVE-2015-5377.Insecure.Deserialization
IPS Signature
Advanced IPS Signature
IPS Group
IPS / GENERIC / CODEEXECUTION
Issued
Feb 15, 2024
Description
Elasticsearch vulnerability is due to the deserialization of untrusted ThrowableObjectInputStream data. A remote, unauthenticated attacker could exploit this vulnerability by sending crafted serialized data to the target application. Successful exploitation could result in arbitrary code execution with the privileges of the affected java process.
cve
2015-5377
Enter your details in the box below to receive an email each time we post a new issue of our newsletter.







May 26, 2024