Information Disclosure in Filebeat by Elastic
CVE-2023-31413

3.3LOW

Key Information:

Vendor: Elastic
Status: Filebeat
Vendor: CVE Published:; 4 May 2023

What is CVE-2023-31413?

Filebeat, a lightweight data shipper for logs, contains a vulnerability that may cause sensitive information to be inadvertently logged. Specifically, when debug logging is enabled, contents of the Authorization or Proxy-Authorization headers sent in HTTP requests can be exposed. This oversight could potentially compromise credentials, allowing unauthorized access to sensitive resources. It is crucial for users of affected Filebeat versions to be aware of this issue and to apply security measures promptly.

Affected Version(s)

Filebeat versions through 7.17.9 and 8.6.2

References

https://www.elastic.co/community/security/

https://discuss.elastic.co/t/elastic-stack-8-7-0-7-17-10-...

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 4, 2023
Vulnerability Reserved
Apr 27, 2023

JSON