Lucene search

K
cvelistElasticCVELIST:CVE-2019-7620
HistoryOct 30, 2019 - 1:38 p.m.

CVE-2019-7620

2019-10-3013:38:40
CWE-400
elastic
www.cve.org

7.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.1%

Logstash versions before 7.4.1 and 6.8.4 contain a denial of service flaw in the Logstash Beats input plugin. An unauthenticated user who is able to connect to the port the Logstash beats input could send a specially crafted network packet that would cause Logstash to stop responding.

CNA Affected

[
  {
    "product": "Logstash",
    "vendor": "Elastic",
    "versions": [
      {
        "status": "affected",
        "version": "before 7.4.1 and 6.8.4"
      }
    ]
  }
]

7.3 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.1%