CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

72 matches found

OSV•added 2026/04/07 2:58 p.m.•2 views

GO-2026-4789 Packetbeat does not properly validate an array index in multiple protocol parser components in github.com/elastic/beats

Packetbeat does not properly validate an array index in multiple protocol parser components in github.com/elastic/beats...

5.7CVSS5.8AI score0.00239EPSS

Exploits0References4

Tenable Nessus•added 2026/03/27 12:0 a.m.•1 views

Elastic Beats packetbeat 8.0.x < 8.19.11 / 9.0.x < 9.2.5 DoS (ESA-2026-11)

The version of Elastic Beats packetbeat installed on the remote host is 8.0.x prior to 8.19.11, 9.0.x prior to 9.2.5. It is, therefore, affected by a denial of service vulnerability. - Improper Validation of Array Index CWE-129 in multiple protocol parser components in Packetbeat can lead Denial ...

5.7CVSS5.9AI score0.00239EPSS

Exploits0References2

RedhatCVE•added 2026/03/26 3:6 p.m.•5 views

CVE-2026-26933

Improper Validation of Array Index CWE-129 in multiple protocol parser components in Packetbeat can lead Denial of Service via Input Data Manipulation CAPEC-153. An attacker with the ability to send specially crafted, malformed network packets to a monitored network interface can trigger...

5.7CVSS5.8AI score0.00239EPSS

Exploits0References1

Snyk•added 2026/03/19 6:31 p.m.•2 views

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index in protocol parser components. An attacker can cause the application to crash or exhaust resources by sending specially crafted, malformed network packets to a monitored network interface. Note: This i...

5.9CVSS5.8AI score0.00239EPSS

Exploits0References2

Snyk•added 2026/03/19 6:31 p.m.•4 views

Improper Validation of Array Index

5.9CVSS5.8AI score0.00239EPSS

Exploits0References2

Snyk•added 2026/03/19 6:31 p.m.•2 views

Improper Validation of Array Index

5.9CVSS5.8AI score0.00239EPSS

Exploits0References2

Github Security Blog•added 2026/03/19 6:31 p.m.•4 views

Packetbeat does not properly validate an array index in multiple protocol parser components

5.7CVSS5.8AI score0.00239EPSS

Exploits0References5Affected Software1

NVD•added 2026/03/19 6:16 p.m.•2 views

CVE-2026-26933

5.7CVSS0.00239EPSS

Exploits0References1

Cvelist•added 2026/03/19 5:8 p.m.•15 views

CVE-2026-26933 Improper Validation of Array Index in Packetbeat Leading to Denial of Service

5.7CVSS0.00239EPSS

Exploits0References1

ATTACKERKB•added 2026/03/19 5:8 p.m.•1 views

CVE-2026-26933

5.7CVSS5.8AI score0.00239EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/19 5:8 p.m.•5 views

CVE-2026-26933 Improper Validation of Array Index in Packetbeat Leading to Denial of Service

5.7CVSS5.8AI score0.00239EPSS

Exploits0References1

CVE•added 2026/03/19 5:8 p.m.•15 views

CVE-2026-26933

Packetbeat contains an input validation flaw (CWE-129) in multiple protocol parser components that can trigger out‑of‑bounds reads and cause Denial of Service. An attacker who can send specially crafted, malformed network packets on the same network segment or via traffic routed to monitored inte...

5.7CVSS5.8AI score0.00239EPSS

Exploits0References1Affected Software1

Elastic•added 2026/03/19 4:56 p.m.•5 views

Packetbeat 8.19.11, 9.2.5 Security Update (ESA-2026-11)

Improper Validation of Array Index in Packetbeat Leading to Denial of Service Improper Validation of Array Index CWE-129 in multiple protocol parser components in Packetbeat can lead Denial of Service via Input Data Manipulation CAPEC-153. An attacker with the ability to send specially crafted,...

5.7CVSS5.7AI score0.00239EPSS

Exploits0

CNNVD•added 2026/03/19 12:0 a.m.•4 views

Elastic Packetbeat 安全漏洞

Elastic Packetbeat is a data collector developed by the Dutch company Elastic. There is a security vulnerability in Elastic Packetbeat, which stems from improper array index validation in multiple protocol parser components. This vulnerability may lead to out-of-bounds reads through manipulation ...

5.7CVSS5.7AI score0.00239EPSS

Exploits0References1

RedhatCVE•added 2026/02/27 7:45 p.m.•4 views

CVE-2026-26932

Improper Validation of Array Index CWE-129 in the PostgreSQL protocol parser in Packetbeat can lead Denial of Service via Input Data Manipulation CAPEC-153. An attacker can send a specially crafted packet causing a Go runtime panic that terminates the Packetbeat process. This vulnerability requir...

7.5CVSS6AI score0.00454EPSS

Exploits0References1

EUVD•added 2026/02/26 6:31 p.m.•7 views

EUVD-2026-8864

5.7CVSS5.6AI score0.00454EPSS

Exploits0References2

NVD•added 2026/02/26 6:23 p.m.•5 views

CVE-2026-26932

7.5CVSS0.00454EPSS

Exploits0References1

OSV•added 2026/02/26 6:23 p.m.•3 views

CVE-2026-26932

7.5CVSS5.8AI score

Exploits0References1

CVE•added 2026/02/26 4:59 p.m.•13 views

CVE-2026-26932

CVE-2026-26932 affects Elastic Packetbeat (PostgreSQL protocol parser) and can cause a Denial of Service via a Go runtime panic when the pgsql protocol is enabled and monitoring traffic on the targeted port. Affected versions include Packetbeat 8.x (up to 8.19.10) and 9.x (up to 9.2.4). The under...

7.5CVSS5.6AI score0.00454EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/02/26 4:59 p.m.•2 views

CVE-2026-26932

7.5CVSS5.8AI score0.00454EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by