6.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.1%
Logstash prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information.
github.com/elastic/logstash
github.com/elastic/logstash/commit/0999050144adad7f4d99d43e561c2882fd7c512b
nvd.nist.gov/vuln/detail/CVE-2016-1000221
web.archive.org/web/20210124065200/www.securityfocus.com/bid/99126
www.elastic.co/community/security