CVE-2023-46672Log File Information Exposure in Logstash

CWE-532Log File Information Exposure3 documents3 sources
Severity
5.5MEDIUMNVD
CNA8.4
EPSS
0.2%
top 58.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Elastic Logstash
Timeline
PublishedNov 15

Description

An issue was identified by Elastic whereby sensitive information is recorded in Logstash logs under specific circumstances. The prerequisites for the manifestation of this issue are: * Logstash is configured to log in JSON format https://www.elastic.co/guide/en/logstash/current/running-logstash-command-line.html , which is not the default logging format. * Sensitive data is stored in the Logstash keystore and referenced as a variable in Logstash configuration.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5elastic/logstash8.10.08.11.1
NVDelastic/logstash8.10.08.11.1+1

🔴Vulnerability Details

2
GHSA
GHSA-r6fg-prgw-3ff5: An issue was identified by Elastic whereby sensitive information is recorded in Logstash logs under specific circumstances2023-11-15
CVEList
Logstash Insertion of Sensitive Information into Log File2023-11-15
CVE-2023-46672 — Log File Information Exposure | cvebase