CVE-2024-43709

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Elasticsearch (affected versions not specified)

Description An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception, resulting in a crash via a specially crafted query using an SQL function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

BDU:2025-06249

BIT-ELASTICSEARCH-2024-43709

CVE-2024-43709

GHSA-JGX4-7V3V-VWFM

Affected Products

Elasticsearch

Red Os

CVE-2024-43709

Weakness Enumeration

Related Identifiers

Affected Products

References · 18