Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Logstash versions before 7.4.1 and 6.8.4 contain a denial of service flaw in the Logstash Beats input plugin. An unauthenticated user who is able to connect to the port the Logstash beats input could send a specially crafted network packet that would cause Logstash to stop responding.
CVSS Information
N/A
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Elasticsearch Logstash 输入验证错误漏洞
Vulnerability Description
Elasticsearch Logstash是荷兰Elasticsearch公司的一套日志分析和监控工具。 Elasticsearch Logstash 7.4.1之前版本和6.8.4之前版本中的Logstash Beats输入插件存在安全漏洞。攻击者可通过发送特制的网络数据包利用该漏洞造成Logstash停止响应。
CVSS Information
N/A
Vulnerability Type
N/A