Lucene search
K

4 matches found

Circl
Circl
added 2024/01/04 8:11 a.m.6 views

CVE-2023-49922

creationtimestamp| type| source ---|---|--- 2024-01-04 08:11:19+00:00| seen| https://t.me/ctinow/162820...

6.8CVSS6.3AI score0.00589EPSS
Exploits0References1
OSV
OSV
added 2023/12/12 7:15 p.m.3 views

CVE-2023-49922

An issue was discovered by Elastic whereby Beats and Elastic Agent would log a raw event in its own logs at the WARN or ERROR level if ingesting that event to Elasticsearch failed with any 4xx HTTP status code except 409 or 429. Depending on the nature of the event that Beats or Elastic Agent...

6.5CVSS5.9AI score0.00589EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/12 6:23 p.m.13 views

CVE-2023-49922 Beats Insertion of Sensitive Information into Log File

An issue was discovered by Elastic whereby Beats and Elastic Agent would log a raw event in its own logs at the WARN or ERROR level if ingesting that event to Elasticsearch failed with any 4xx HTTP status code except 409 or 429. Depending on the nature of the event that Beats or Elastic Agent...

6.8CVSS6.6AI score0.00589EPSS
Exploits0References1
CVE
CVE
added 2023/12/12 6:23 p.m.56 views

CVE-2023-49922

CVE-2023-49922 concerns Elastic Beats and Elastic Agent logging raw events to their own logs at WARN/ERROR when ingestion to Elasticsearch fails with most 4xx responses (except 409/429), potentially exposing sensitive information. Connected docs confirm a fix in Elastic releases 8.11.3 and 7.17.1...

6.8CVSS6.4AI score0.00589EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder