CVE-2016-10362
Summary: CVE-2016-10362 affects Logstash prior to 5.0.1, where the Elasticsearch Output plugin could log HTTP basic auth credentials to a file when updating connections after sniffing. This is an information disclosure vulnerability affecting the plugin behavior in Logstash’s core workflow. Impac...