Описание
Metricbeat affected by multiple denial of service vulnerabilities
Improper Validation of Array Index (CWE-129) exists in Metricbeat can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed payloads sent to the Graphite server metricset or Zookeeper server metricset. Additionally, Improper Input Validation (CWE-20) exists in the Prometheus helper module that can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed metric data.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2026-0528
- https://github.com/elastic/beats/commit/0025fbfe668936eb8fa65b838508faf3c3c04387
- https://github.com/elastic/beats/commit/6e42552a23cec734e7977ebd3eb7fb797ddce456
- https://github.com/elastic/beats/commit/c7664c91a5a68c2df782bfeffe4fb7f42ff2ad1a
- https://discuss.elastic.co/t/metricbeat-8-19-10-9-1-10-9-2-4-security-update-esa-2026-01/384519
Пакеты
github.com/elastic/beats/v7
< 7.0.0-alpha2.0.20251217054608-6e42552a23ce
7.0.0-alpha2.0.20251217054608-6e42552a23ce
github.com/elastic/beats/v7
>= 8.0.0, < 8.19.10
8.19.10
github.com/elastic/beats/v7
>= 9.0.0, < 9.1.10
9.1.10
github.com/elastic/beats/v7
>= 9.2.0, < 9.2.4
9.2.4
Связанные уязвимости
Improper Validation of Array Index (CWE-129) exists in Metricbeat can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed payloads sent to the Graphite server metricset or Zookeeper server metricset. Additionally, Improper Input Validation (CWE-20) exists in the Prometheus helper module that can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed metric data.