SSL/TLS Certificate Validation Vulnerability in Logstash by Elastic
CVE-2015-5619

5.9MEDIUM

Key Information:

Vendor

Elastic
Status
Logstash
Vendor
CVE Published:
9 August 2017

What is CVE-2015-5619?

Logstash versions 1.4.x prior to 1.4.5 and 1.5.x prior to 1.5.4 have a significant vulnerability where the SSL/TLS certificates from the Logstash server are not validated. This lack of validation may allow attackers to intercept and manipulate communication between Logstash components through a man-in-the-middle attack, leading to potential exposure of sensitive information.

References

http://www.securityfocus.com/bid/76455
vdb-entryx_refsource_BID
https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-rele...
x_refsource_CONFIRM
http://www.securityfocus.com/archive/1/536294/100/0/threaded
mailing-listx_refsource_BUGTRAQ

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.