Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A sensitive data disclosure flaw was found in the way Logstash versions before 5.6.15 and 6.6.1 logs malformed URLs. If a malformed URL is specified as part of the Logstash configuration, the credentials for the URL could be inadvertently logged as part of the error message.
CVSS Information
N/A
Vulnerability Type
通过错误消息导致的信息暴露
Vulnerability Title
Elasticsearch Logstash 日志信息泄露漏洞
Vulnerability Description
Elasticsearch Logstash是荷兰Elasticsearch公司的一套日志分析和监控工具。 Elasticsearch Logstash 5.6.15之前版本和6.6.1之前版本中存在日志信息泄露漏洞。该漏洞源于网络系统或产品的日志文件非正常输出。
CVSS Information
N/A
Vulnerability Type
N/A