CVE-2023-46673
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-46673
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-46673.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-46673
- Aliases
- Downstream
- Published
- 2023-11-22T10:15:08.417Z
- Modified
- 2025-11-19T17:33:46.906078Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
- References
Affected packages
Git / github.com/elastic/elasticsearch
Database specific
vanir_signatures
[
{
"deprecated": false,
"source": "https://github.com/elastic/elasticsearch/commit/774e3bfa4d52e2834e4d9d8d669d77e4e5c1017f",
"id": "CVE-2023-46673-84cc319c",
"signature_type": "Function",
"target": {
"file": "build-tools-internal/src/main/java/org/elasticsearch/gradle/internal/testfixtures/TestFixturesPlugin.java",
"function": "apply"
},
"signature_version": "v1",
"digest": {
"function_hash": "325784271606612404164400123082142816971",
"length": 3690.0
}
},
{
"deprecated": false,
"source": "https://github.com/elastic/elasticsearch/commit/774e3bfa4d52e2834e4d9d8d669d77e4e5c1017f",
"id": "CVE-2023-46673-afd122e0",
"signature_type": "Line",
"target": {
"file": "build-tools-internal/src/main/java/org/elasticsearch/gradle/internal/testfixtures/TestFixturesPlugin.java"
},
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"305397982476570854131184393422281802034",
"100542449908851490517382426102539479787",
"214587582970408227284909587357119016735",
"285970827320131388487951052299321287047",
"41453645292239769522791082638784997580",
"328227527869521250077606291737843585093",
"10140825892038828328726688010826312150",
"264992127695632620499514457325143505965"
]
}
}
]