72 matches found
GHSA-FJ69-23M4-CCVV Elasticsearch Packetbeat has Excessive Allocation of Memory and CPU via Malicious IPv4 Fragments
Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to denial-of-service in Packetbeat...
Elasticsearch Packetbeat has Excessive Allocation of Memory and CPU via Malicious IPv4 Fragments
Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to denial-of-service in Packetbeat...
CVE-2025-68381
Improper Bounds Check CWE-787 in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow CAPEC-100 and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number...
CVE-2025-68381
Improper Bounds Check CWE-787 in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow CAPEC-100 and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number...
CVE-2025-68388
Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to a degradation in Packetbeat...
CVE-2025-68388
Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to a degradation in Packetbeat...
CVE-2025-68382
CVE-2025-68382 describes an out-of-bounds read (CWE-125) in the NFS protocol dissector used by Elastic Packetbeat/Elastic Beats components, enabling an unauthenticated remote attacker to trigger a buffer overflow and cause a DoS (process crash) when handling truncated XDR-encoded RPC messages. Af...
CVE-2025-68381 Packetbeat Improper Bounds Check
Improper Bounds Check CWE-787 in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow CAPEC-100 and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number...
CVE-2025-68381 Packetbeat Improper Bounds Check
Improper Bounds Check CWE-787 in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow CAPEC-100 and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number...
CVE-2025-68381
Packetbeat (Elastic Beats) Vulnerability CVE-2025-68381 stems from an improper bounds check (CWE-787) in processing UDP fragments, enabling a remote, unauthenticated attacker to trigger a buffer overflow and cause a crash or significant resource exhaustion with a crafted UDP packet containing an ...
CVE-2025-68388
Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to a degradation in Packetbeat...
CVE-2025-68388
Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to a degradation in Packetbeat...
CVE-2025-68388
CVE-2025-68388 affects Elasticsearch Packetbeat (Elastic Beats). The issue is described as excessive allocation of memory and CPU caused by the integration of malicious IPv4 fragments, exploitable by an unauthenticated remote attacker over the network, leading to degraded Packetbeat performance. ...
Packetbeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-31)
Packetbeat Out-of-bounds Read ESA-2025-31 Out-of-bounds read CWE-125 allows an unauthenticated remote attacker to perform a buffer overflow CAPEC-100 via the NFS protocol dissector, leading to a denial-of-service DoS through a reliable process crash when handling truncated XDR-encoded RPC message...
Packetbeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-30)
Packetbeat Improper Bounds Check ESA-2025-30 Improper Bounds Check CWE-787 in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow CAPEC-100 and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid...
Packetbeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-29)
Packetbeat Allocation of Resources Without Limits or Throttling ESA-2025-29 Allocation of resources without limits or throttling CWE-770 allows an unauthenticated remote attacker to cause excessive allocation CAPEC-130 of memory and CPU via the integration of malicious IPv4 fragments, leading to ...
PT-2025-52355
Name of the Vulnerable Software and Affected Versions Packetbeat affected versions not specified Description An unauthenticated remote attacker can cause excessive allocation of memory and CPU resources in Packetbeat through the manipulation of malicious IPv4 fragments. This resource exhaustion c...
Elastic Packetbeat 安全漏洞
Elastic Packetbeat is a data collector from the Dutch company Elastic. A security vulnerability exists in Elastic Packetbeat that stems from improper boundary checking and could lead to a buffer overflow and denial of service...
Elastic Packetbeat 安全漏洞
Elastic Packetbeat is a data collector from the Dutch company Elastic. A security vulnerability exists in Elastic Packetbeat that stems from an out-of-bounds read in the NFS protocol parser, which could lead to a denial of service...
Elastic Packetbeat 安全漏洞
Elastic Packetbeat is a data collector from the Dutch company Elastic. A security vulnerability exists in Elastic Packetbeat, which stems from an unrestricted resource allocation and could lead to a denial of service...