CVE-2025-68383

🗓️ 18 Dec 2025 22:00:12Reported by elasticType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 11 Views

CVE-2025-68383: Improper input validation in Filebeat can cause denial of service.

Reporter	Title	Published	Views	Family All 23
Chainguard	CVE-2025-68383 vulnerabilities	24 Dec 202519:17	–	cgr
Circl	CVE-2025-68383	19 Dec 202500:13	–	circl
CNNVD	Elastic Filebeat 安全漏洞	18 Dec 202500:00	–	cnnvd
Cvelist	CVE-2025-68383 Filebeat Improper Validation of Specified Index, Position, or Offset in Input	18 Dec 202522:00	–	cvelist
Elastic	Filebeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-32)	18 Dec 202521:16	–	elastic
Tenable Nessus	Elastic Beats filebeat 7.0.x < 8.19.9 / 9.0.x < 9.1.9 / 9.2.x 9.2.3 Multiple Vulnerabilities	6 Jan 202600:00	–	nessus
EUVD	EUVD-2025-204418	19 Dec 202500:31	–	euvd
Github Security Blog	Filebeat Beats has Buffer Overflow via Malformed Syslog Message or Malicious Tokenizer Pattern in Dissect Configuration	19 Dec 202500:31	–	github
NVD	CVE-2025-68383	18 Dec 202522:16	–	nvd
OSV	CGA-M658-4WW5-36J3	9 Jan 202621:50	–	osv

NVD

Node

elastic filebeatRange7.0.0–7.17.29

elastic filebeatRange8.0.0–8.19.9

elastic filebeatRange9.0.0–9.1.9

elastic filebeatRange9.2.0–9.2.3

[
  {
    "defaultStatus": "unaffected",
    "product": "Filebeat",
    "vendor": "Elastic",
    "versions": [
      {
        "lessThanOrEqual": "7.17.29",
        "status": "affected",
        "version": "7.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.19.8",
        "status": "affected",
        "version": "8.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.1.8",
        "status": "affected",
        "version": "9.0.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.2.2",
        "status": "affected",
        "version": "9.2.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
discuss	www.discuss.elastic.co/t/filebeat-8-19-9-9-1-9-and-9-2-3-security-update-esa-2025-32/384180

23 Dec 2025 17:59Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.5

EPSS0.00031

SSVC

CWE-1284