CVE-2015-1427βElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
PUBLISHEDvulnerability record
2022-03-25 Β· last modified June 21, 2025
Metadata
Vulnerability Name
Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability
Description
The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands.
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.