exploitDog

CVE-2026-0529

Опубликовано: 14 янв. 2026

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Improper Validation of Array Index (CWE-129) in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers (CAPEC-100) through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol parsing is enabled.

Ссылки

https://discuss.elastic.co/t/packetbeat-8-19-10-9-1-10-9-2-4-security-update-esa-2026-02/384520

EPSS

Процентиль: 6%

0.00025

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-129

Связанные уязвимости

GHSA-c27p-chmh-jjv6

CVSS3: 6.5

github

24 дня назад

Improper Validation of Array Index (CWE-129) in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers (CAPEC-100) through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol parsing is enabled.

EPSS

Процентиль: 6%

0.00025

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-129