CVE-2018-3817

Summary

When logging warnings regarding deprecated settings, Logstash before 5.6.6 and 6.x before 6.1.2 could inadvertently log sensitive information.

Affected Software

VendorProductVersion RangeStatus
ElasticLogstashBefore 6.1.2 or 5.6.6affected

Weaknesses

  • CWE-532: CWE-532: Information Exposure Through Log Files

ADP Enrichment

CVE Program Container

Additional References

References