Denial of Service Vulnerability in Packetbeat by Elastic
CVE-2017-11480

7.5HIGH

Key Information:

Vendor: Elastic
Status: Packetbeat
Vendor: CVE Published:; 8 December 2017

What is CVE-2017-11480?

Packetbeat, a lightweight network packet analyzer by Elastic, is susceptible to a denial of service flaw in its PostgreSQL protocol handler. When configured to monitor PostgreSQL traffic, if an attacker sends arbitrary network traffic to the designated monitored port, it can disrupt Packetbeat’s ability to accurately log legitimate PostgreSQL traffic, potentially leading to undetected issues in the database server. Users of Packetbeat versions prior to 5.6.4 should ensure they upgrade to mitigate this risk.

Affected Version(s)

Packetbeat before 5.6.4

References

https://discuss.elastic.co/t/beats-5-6-4-security-update/...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2017
Vulnerability Reserved
Jul 20, 2017

JSON