Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistElasticCVELIST:CVE-2019-7612
HistoryMar 25, 2019 - 6:34 p.m.

CVE-2019-7612

2019-03-2518:34:06
CWE-209
elastic
www.cve.org
1

9.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.7%

JSON

A sensitive data disclosure flaw was found in the way Logstash versions before 5.6.15 and 6.6.1 logs malformed URLs. If a malformed URL is specified as part of the Logstash configuration, the credentials for the URL could be inadvertently logged as part of the error message.

CNA Affected

[
  {
    "product": "Logstash",
    "vendor": "Elastic",
    "versions": [
      {
        "status": "affected",
        "version": "before 5.6.15 and 6.6.1"
      }
    ]
  }
]

Related

nessus 1
archlinux 1
nvd 1
veracode 1
ibm 1
osv 1
prion 1
openvas 1
cve 1
nessus
nessus
Logstash ESA-2019-05
2019-03-20 00:00:00
archlinux
archlinux
[ASA-201902-28] logstash: information disclosure
2019-02-25 00:00:00
nvd
nvd
CVE-2019-7612
2019-03-25 19:29:02
veracode
veracode
Information Disclosure
2019-03-26 02:28:56
ibm
ibm
Security Bulletin: IBM API Connect is impacted by a vulnerability in Elastic Logstash (CVE-2019-7612)
2020-01-17 22:11:48
osv
osv
CVE-2019-7612
2019-03-25 19:29:02
prion
prion
Design/Logic Flaw
2019-03-25 19:29:00
openvas
openvas
Elastic Logstash Information Disclosure Vulnerability (ESA-2019-05)
2019-03-27 00:00:00
cve
cve
CVE-2019-7612
2019-03-25 19:29:02

9.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.7%

JSON
Related for CVELIST:CVE-2019-7612
nessus1archlinux1nvd1veracode1ibm1osv1prion1openvas1cve1