Main Vulnerability Database Vulnerabilities #VU18082

#VU18082 Insufficient logging in Beats - CVE-2019-7613

Published: March 27, 2019

Vulnerability identifier: #VU18082

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2019-7613

CWE-ID: CWE-778

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Beats

Software vendor:
Elastic Stack

Description

The vulnerability allows a remote attacker disrupt logging functionality of the application.

The vulnerability exists due to insufficient sanitization of user-supplied input when writing events into log files within the Winlogbeat. A remote attacker with ability to supply specially crafted characters to the Elasticsearch application can inject certain characters into a log entry could prevent Winlogbeat from recording the event.

Successful exploitation of the vulnerability may allow attackers to hide their malicious activity on the system.

Remediation

Install updates from vendor's website.

External links

https://discuss.elastic.co/t/elastic-stack-6-6-2-and-5-6-16-security-update/173180

#VU18082 Insufficient logging in Beats - CVE-2019-7613

Description

Remediation

External links

Please verify you're human