17 matches found
EUVD-2015-4176
Malware in sbrugna...
EUVD-2014-4254
Malware in sbrugna...
Elasticsearch Logstash allows remote attackers to execute arbitrary commands
Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...
GHSA-8QHQ-RQ4J-8PRJ Elasticsearch Logstash allows remote attackers to execute arbitrary commands
Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...
Elasticsearch Logstash allows remote attackers to execute arbitrary commands
Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in 1 zabbix.rb or 2 nagiosnsca.rb in outputs/...
Elasticsearch Logstash Beats Input Plugin CVE-2019-7620 Denial of Service Vulnerability
Description Elasticsearch Logstash is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the the application to stop responding, denying service to legitimate users. Technologies Affected Elasticsearch Logstash 1.0.14 Elasticsearch Logstash 1.0.15 Elasticsearc...
Elasticsearch Logstash Information Disclosure Vulnerability (CNVD-2018-08330)
Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. An information disclosure vulnerability exists in Elasticsearch Logstash. An attacker could exploit this...
Elastic Logstash 'CVE-2016-10362' Information Disclosure Vulnerability
Elastic Logstash is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Elasticsearch Logstash Denial of Service Vulnerability
Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security vulnerability exists in Elasticsearch Logstash versions prior to 2.3.3. A remote attacker can...
Elasticsearch Logstash Security Bypass Vulnerability
Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security vulnerability exists in Elasticsearch Logstash versions prior to 2.1.2. An attacker can exploit...
Elasticsearch Logstash Information Disclosure Vulnerability
Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. An information disclosure vulnerability exists in Elasticsearch Logstash versions prior to 5.0.1. An attack...
Elasticsearch Logstash Security Bypass Vulnerability (CNVD-2015-05626)
Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security bypass vulnerability exists in Elasticsearch Logstash. An attacker can exploit this vulnerabilit...
Elasticsearch Logstash Security Bypass Vulnerability
Elasticsearch Logstash is a set of log analysis and monitoring tools from Elasticsearch Netherlands. The tool provides functions such as search, processing and management of logs or events. A security bypass vulnerability exists in Elasticsearch Logstash. An attacker can exploit this vulnerabilit...
Elasticsearch Logstash File Output Plugin Directory Traversal Vulnerability
Elasticsearch Logstash is a set of log analysis and monitoring tools. The tool provides features such as search, processing and management of logs or events. A directory traversal vulnerability in the file output plugin for Elasticsearch Logstash allows remote attackers to write arbitrary files t...
CVE-2015-4152
Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...
CVE-2015-4152
Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...
CVE-2014-4326
CVE-2014-4326 affects Elastic/Logstash prior to 1.4.2 when configured with the Zabbix or Nagios outputs. A crafted event sent to the outputs/ handlers (zabbix.rb or nagios_nsca.rb) allows remote code execution, enabling an attacker to run arbitrary OS commands. Affected versions are Logstash 1.0....