Elastic Logstash 'CVE-2015-5378' Man in the Middle Security Bypass Vulnerability

Elastic Logstash is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elastic:logstash";...

Elastic Logstash 'CVE-2015-5378' Man in the Middle Security Bypass Vulnerability - Linux

Elastic Logstash is prone to a security bypass vulnerability. This VT has been deprecated and merged into the VT VT SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2015-5378

Logstash 1.5.x before 1.5.3 and 1.4.x before 1.4.4 allows remote attackers to read communications between Logstash Forwarder agent and Logstash server...

CVE-2015-5378

Elastic Logstash versions prior to 1.5.3 (1.5.x) and prior to 1.4.4 (1.4.x) are vulnerable to a SSL/TLS FREAK-based man-in-the-middle bypass when using the Lumberjack input in combination with Logstash Forwarder. This allows an attacker to intercept and potentially read the communications between...