CVE-2025-68381

Summary

Improper Bounds Check (CWE-787) in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow (CAPEC-100) and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number.

Affected Software

VendorProductVersion RangeStatus
ElasticPacketbeat7.0.0 <= 7.17.29affected
ElasticPacketbeat8.0.0 <= 8.19.8affected
ElasticPacketbeat9.0.0 <= 9.1.8affected
ElasticPacketbeat9.2.0 <= 9.2.2affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References