Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Memory Allocation with Excessive Size Value in Metricbeat Leading to Denial of Service
Vulnerability Description
Memory Allocation with Excessive Size Value (CWE-789) in the Prometheus remote_write HTTP handler in Metricbeat can lead Denial of Service via Excessive Allocation (CAPEC-130).
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经控制的内存分配
Vulnerability Title
Elastic Metricbeat 安全漏洞
Vulnerability Description
Elastic Metricbeat是荷兰Elastic公司的一个指标采集器。 Elastic Metricbeat存在安全漏洞,该漏洞源于Prometheus remote_write HTTP处理程序存在内存分配值过大问题,可能导致通过过度分配造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A