CVE-2023-6687

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-6687

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-6687.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-6687

Published

2023-12-12T19:15:08.510Z

Modified

2026-04-10T05:07:41.510543Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

An issue was discovered by Elastic whereby Elastic Agent would log a raw event in its own logs at the WARN or ERROR level if ingesting that event to Elasticsearch failed with any 4xx HTTP status code except 409 or 429. Depending on the nature of the event that Elastic Agent attempted to ingest, this could lead to the insertion of sensitive or private information in the Elastic Agent logs. Elastic has released 8.11.3 and 7.17.16 that prevents this issue by limiting these types of logs to DEBUG level logging, which is disabled by default.

References

https://discuss.elastic.co/t/beats-and-elastic-agent-8-11-3-7-17-16-security-update-esa-2023-30/349180

Affected packages

Git / github.com/elastic/elastic-agent

Affected ranges

Type

GIT

Repo

https://github.com/elastic/elastic-agent

Events

Introduced

Fixed

f4f6fbb3e6c81f37cec57a3c244f009b14abd74f

Database specific

{
    "versions": [
        {
            "introduced": "8.0.0"
        },
        {
            "fixed": "8.11.3"
        }
    ]
}

Affected versions

v8.*

v8.11.0

v8.11.1

v8.11.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-6687.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "7.0.0"
            },
            {
                "fixed": "7.17.16"
            }
        ]
    }
]