Security Advisory

CVE-2016-10363

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-06-16 21:00:00

Last updated 2024-08-06 03:21:51

Assigner elastic

State PUBLISHED

Description

Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafting malicious Netflow v5, Netflow v9 or IPFIX packets could perform a denial of service attack on the Logstash instance. The errors resulting from these crafted inputs are not handled by the codec and can cause the Logstash process to exit.

← Browse all CVEs View on cve.org ↗