CVE-2024-52981
Description
An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow.
CWE
- CWE-400 — CWE-400 Uncontrolled Resource Consumption
Affected
- Elastic / Elasticsearch — v=7.17.0 ≤7.17.23 [affected]; v=8.0 ≤8.15.0 [affected]
CVSS
- 3.1 score=4.9 severity=MEDIUM
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
References
Source
cvelistV5-main/cves/2024/52xxx/CVE-2024-52981.json