VYPR

Maven package

org.elasticsearch.plugin/x-pack-core

pkg:maven/org.elasticsearch.plugin/x-pack-core

Vulnerabilities (1)

  • CVE-2025-68390Dec 18, 2025
    affected < 8.19.8fixed 8.19.8

    Allocation of Resources Without Limits or Throttling (CWE-770) in Elasticsearch can allow an authenticated user with snapshot restore privileges to cause Excessive Allocation (CAPEC-130) of memory and a denial of service (DoS) via crafted HTTP request.