Trend Micro Security

ElasticSearch Snapshot API Directory Traversal Vulnerability (CVE-2015-5531)

  危険度: : 緊急

  概要

Directory traversal vulnerability in Elasticsearch before 1.6.1 allows remote attackers to read arbitrary files via unspecified vectors related to snapshot API calls.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1000128