CVE-2023-31413

Description

Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected products

Elastic / Filebeatversions through 7.17.9 and 8.6.2 – versions through 7.17.9 and 8.6.2

References

MISChttps://www.elastic.co/community/security/
MISChttps://discuss.elastic.co/t/elastic-stack-8-7-0-7-17-10-security-updates/332327