Lucene search

Veracode Vulnerability DatabaseVERACODE:45345

HistoryFeb 05, 2024 - 11:10 a.m.

Insertion Of Sensitive Information Into Log File

2024-02-0511:10:08

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

vulnerability

github

elastic

log file

sensitive information

http status code

6.8 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.3%

JSON

github.com/elastic/beats is vulnerable to Insertion Of Sensitive Information Into Log File. The vulnerability is caused due to logging the raw event object in the WARN and ERROR level if the ingesting failed with any 4XX HTTP status code (except 409 or 209). This can lead to insertion of sensitive or private information in the Beats or Elastic Agent logs.

CPENameOperatorVersion
github.com/elastic/beatslev7.17.15
github.com/elastic/beatslev8.11.1
github.com/elastic/beatslev7.17.15
github.com/elastic/beatslev8.11.1

Name	Operator	Version
github.com/elastic/beats	le	v7.17.15
github.com/elastic/beats	le	v8.11.1
github.com/elastic/beats	le	v7.17.15
github.com/elastic/beats	le	v8.11.1

References

github.com/advisories/GHSA-hj4r-2c9c-29h3

github.com/elastic/beats/commit/9bd7de84ab9c31bb4e1c0a348a7b7c26817a0996

github.com/elastic/beats/pull/37330

github.com/elastic/beats/pull/37348

6.8 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

18.3%

JSON

Related for VERACODE:45345