Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Packetbeat versions prior to 5.6.4 are affected by a denial of service flaw in the PostgreSQL protocol handler. If Packetbeat is listening for PostgreSQL traffic and a user is able to send arbitrary network traffic to the monitored port, the attacker could prevent Packetbeat from properly logging other PostgreSQL traffic.
CVSS Information
N/A
Vulnerability Type
不恰当的资源关闭或释放
Vulnerability Title
Elasticsearch Packetbeat PostgreSQL protocol handler 安全漏洞
Vulnerability Description
Elasticsearch Packetbeat是荷兰Elasticsearch公司的一套轻量级网络数据包分析工具。PostgreSQL protocol handler是其中的一个PostgreSQL协议处理程序。 Elasticsearch Packetbeat 5.6.4之前的版本中的PostgreSQL protocol handler存在拒绝服务漏洞。攻击者可通过向被监控的端口发送任意的网络流量利用该漏洞造成Packetbeat无法正确的记录其他PostgreSQL流量。
CVSS Information
N/A
Vulnerability Type
N/A