Discuss the Elastic Stack

Vulnerability (CVE-2022-42889) Apache Commons Text

Elastic Stack Elasticsearch

mduijkers (Mark) October 19, 2022, 1:25pm 1

Vulnerability (CVE-2022-42889) Apache Commons Text. For this vulnerability ES needs to upgrade to Apache Commons Text 1.10.0
Source: https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om

Which version of ES is proof for this.
What is the current impact of this vulnerability within ES

warkolm (Mark Walkom) October 19, 2022, 8:56pm 2

Welcome to our community!

Please see Impact of CVE-2022-42889 on Elastic stack, we will update that.

1 Like

© 2020. All Rights Reserved - Elasticsearch

Elasticsearch is a trademark of Elasticsearch BV, registered in the U.S. and in other countries
Trademarks
Terms
Privacy
Brand
Code of Conduct

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.