pkg:Maven/org.opensearch.plugin:opensearch-security

7 total CVEsHIGH1MEDIUM6

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2022-35980OpenSearch vulnerable to Improper Authorization of Index Containing Sensitive Information
    >= 2.0.0.0, < 2.2.0.0
  • MEDIUM6.3CVE-2022-41918OpenSearch has issue with fine-grained access control of indices backing data streams
    from 0, < 1.3.7
  • MEDIUM5.7CVE-2023-23613Field-level security issue with .keyword fields in OpenSearch
    from 0, < 1.3.8
  • MEDIUM5.4CVE-2023-45807OpenSearch Issue with tenant read-only permissions
    >= 2.0.0.0, < 2.11.0.0
  • MEDIUM5.3CVE-2023-25806OpenSearch has time discrepancy in authentication responses
    from 0, < 1.3.9
  • MEDIUM4.8CVE-2023-31141OpenSearch issue with fine-grained access control during extremely rare race conditions
    >= 1.0.0, < 1.3.10.0
  • MEDIUM4.7CVE-2023-23612Issue with whitespace in JWT roles in OpenSearch
    from 0, < 1.3.8