Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-4176

Malware in sbrugna...

6.4CVSS6.1AI score0.0303EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-4254

Malware in sbrugna...

7.5CVSS6.1AI score0.03297EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2022/05/14 12:58 a.m.12 views

Elasticsearch Logstash allows remote attackers to execute arbitrary commands

Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...

7.5CVSS7.7AI score0.03297EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/14 12:58 a.m.9 views

GHSA-8QHQ-RQ4J-8PRJ Elasticsearch Logstash allows remote attackers to execute arbitrary commands

Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...

9.3CVSS7.3AI score0.03297EPSS
Exploits0References5
RubySec
RubySec
added 2022/05/13 9:0 p.m.12 views

Elasticsearch Logstash allows remote attackers to execute arbitrary commands

Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...

7.5CVSS7.2AI score0.03297EPSS
Exploits0References1Affected Software1
Symantec
Symantec
added 2019/10/24 12:0 a.m.47 views

Elasticsearch Logstash Beats Input Plugin CVE-2019-7620 Denial of Service Vulnerability

Description Elasticsearch Logstash is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the the application to stop responding, denying service to legitimate users. Technologies Affected Elasticsearch Logstash 1.0.14 Elasticsearch Logstash 1.0.15 Elasticsearc...

0.4AI score0.0153EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/04/04 12:0 a.m.4 views

Elasticsearch Logstash Information Disclosure Vulnerability (CNVD-2018-08330)

Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. An information disclosure vulnerability exists in Elasticsearch Logstash. An attacker could exploit this...

6.5CVSS6.2AI score0.01037EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/03/01 12:0 a.m.31 views

Elastic Logstash 'CVE-2016-10362' Information Disclosure Vulnerability

Elastic Logstash is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.6AI score0.01081EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/20 12:0 a.m.4 views

Elasticsearch Logstash Denial of Service Vulnerability

Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security vulnerability exists in Elasticsearch Logstash versions prior to 2.3.3. A remote attacker can...

7.5CVSS6.7AI score0.01315EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/20 12:0 a.m.3 views

Elasticsearch Logstash Security Bypass Vulnerability

Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security vulnerability exists in Elasticsearch Logstash versions prior to 2.1.2. An attacker can exploit...

7.5CVSS6.7AI score0.01129EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/13 12:0 a.m.10 views

Elasticsearch Logstash Information Disclosure Vulnerability

Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. An information disclosure vulnerability exists in Elasticsearch Logstash versions prior to 5.0.1. An attack...

6.5CVSS6.1AI score0.01081EPSS
Exploits0References1
CNVD
CNVD
added 2015/08/25 12:0 a.m.4 views

Elasticsearch Logstash Security Bypass Vulnerability (CNVD-2015-05626)

Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security bypass vulnerability exists in Elasticsearch Logstash. An attacker can exploit this vulnerabilit...

5.9CVSS6.8AI score0.01219EPSS
Exploits0References1
CNVD
CNVD
added 2015/07/30 12:0 a.m.4 views

Elasticsearch Logstash Security Bypass Vulnerability

Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security bypass vulnerability exists in Elasticsearch Logstash. An attacker can exploit this vulnerabilit...

7.5CVSS6.8AI score0.02462EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/17 12:0 a.m.3 views

Elasticsearch Logstash File Output Plugin Directory Traversal Vulnerability

Elasticsearch Logstash is a set of log analysis and monitoring tools. The tool provides features such as search, processing and management of logs or events. A directory traversal vulnerability in the file output plugin for Elasticsearch Logstash allows remote attackers to write arbitrary files t...

6.4CVSS7.1AI score0.0303EPSS
Exploits1References1
NVD
NVD
added 2015/06/15 3:59 p.m.23 views

CVE-2015-4152

Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...

6.4CVSS6.6AI score0.0303EPSS
Exploits1References4
Cvelist
Cvelist
added 2015/06/15 3:0 p.m.30 views

CVE-2015-4152

Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...

6.5AI score0.0303EPSS
Exploits1References4
CVE
CVE
added 2014/07/22 2:0 p.m.58 views

CVE-2014-4326

CVE-2014-4326 affects Elastic/Logstash prior to 1.4.2 when configured with the Zabbix or Nagios outputs. A crafted event sent to the outputs/ handlers (zabbix.rb or nagios_nsca.rb) allows remote code execution, enabling an attacker to run arbitrary OS commands. Affected versions are Logstash 1.0....

7.5CVSS7.5AI score0.03297EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder