Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled.
Metrics
Affected Vendors & Products
References
History
Wed, 29 Jan 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
ssvc
|

Status: PUBLISHED
Assigner: elastic
Published:
Updated: 2025-01-29T19:01:29.610Z
Reserved: 2023-04-27T00:00:00.000Z
Link: CVE-2023-31413

Updated: 2024-08-02T14:53:31.073Z

Status : Modified
Published: 2023-05-04T21:15:11.640
Modified: 2025-01-29T19:15:16.867
Link: CVE-2023-31413

No data.