CVE-2015-4152 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2015-4152 Interim 1 3 2021-06-09T09:37:14Z current 2021-05-30T13:30:27Z 2021-06-09T09:37:14Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2015-4152 Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option. CVE-2015-4152 moderate 6.4 AV:N/AC:L/Au:N/C:N/I:P/A:P