CVE-2025-68383
ADVISORY - githubSummary
Improper Validation of Specified Index, Position, or Offset in Input (CWE-1285) in Filebeat Syslog parser and the Libbeat Dissect processor can allow a user to trigger a Buffer Overflow (CAPEC-100) and cause a denial of service (panic/crash) of the Filebeat process via either a malformed Syslog message or a malicious tokenizer pattern in the Dissect configuration.
Common Weakness Enumeration (CWE)
Improper Validation of Specified Quantity in Input
NIST
2.8
CVSS SCORE
6.5mediumGitHub
CVSS SCORE
6.5mediumGoLang
-
Chainguard
CGA-7c3c-mx4j-9x7j
-
Chainguard
CGA-7g57-wmjp-xv48
-
Chainguard
CGA-7xwv-wm7m-ppg7
-
Chainguard
CGA-8fmm-85hv-xm3j
-
Chainguard
CGA-9688-cpfv-6j59
-
Chainguard
CGA-c2pf-78hm-4c89
-
Chainguard
CGA-g3wm-9mj5-h974
-
Chainguard
CGA-gqg6-p36x-3m3h
-
Chainguard
CGA-m658-4ww5-36j3
-
Chainguard
CGA-q8fx-39gp-9w3g
-
minimos
MINI-44j9-47vc-mghf
-
minimos
MINI-545j-r8j5-qqpj
-
minimos
MINI-5g27-5jv7-cg9j
-
minimos
MINI-79cm-7mq3-3qh9
-
minimos
MINI-7c6c-5v66-hq2j
-
minimos
MINI-9fxr-823c-hpr3
-
minimos
MINI-cf3f-f958-73px
-
minimos
MINI-jv6m-288w-pg8w
-
minimos
MINI-mmw8-7ch2-5cp8
-
minimos
MINI-xg34-7rvq-2r7r
-