8 matches found
EUVD-2026-33958
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught panics in the MongoDB TCP parser, allowing a remote unauthenticated attacker to crash the telemetr...
CVE-2026-0529
Improper Validation of Array Index CWE-129 in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers CAPEC-100 through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol...
Improper Validation of Array Index
Overview Affected versions of this package are vulnerable to Improper Validation of Array Index via the MongoDB protocol parser. An attacker can cause buffer overflows by sending specially crafted network traffic to a monitored network interface where MongoDB protocol parsing is enabled...
CVE-2026-0529
Improper Validation of Array Index CWE-129 in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers CAPEC-100 through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol...
CVE-2026-0529 Improper Validation of Array Index in Packetbeat Leading to Overflow Buffers
Improper Validation of Array Index CWE-129 in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers CAPEC-100 through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol...
CVE-2026-0529 Improper Validation of Array Index in Packetbeat Leading to Overflow Buffers
Improper Validation of Array Index CWE-129 in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers CAPEC-100 through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol...
CVE-2026-0529
CVE-2026-0529 affects Elastic Beats Packetbeat MongoDB protocol parser. Affected software: Elastic Beats (Packetbeat) versions 7.x, 8.x before 8.19.10, and 9.x before 9.1.10 or 9.2.4. Root cause: Improper validation of array index (CWE-129) in the MongoDB protocol parser, which can permit buffer ...
Elastic Packetbeat 安全漏洞
Elastic Packetbeat is a data collector from the Dutch company Elastic. Elastic Packetbeat suffers from a security vulnerability that stems from improper validation of array indexes by the MongoDB protocol parser, which could lead to a buffer overflow...