Ingest Pipeline Script Processor Vulnerability: Crash on Simulate Pipeline API Call

Ingest Pipeline Script Processor Vulnerability: Crash on Simulate Pipeline API Call

CVE-2023-46673 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.

Learn more about our Api Penetration Testing.