Packetbeat versions prior to 5.6.4 and 6.0.0 are affected by a denial of service flaw in the PostgreSQL protocol handler. If Packetbeat is listening for PostgreSQL traffic and a user is able to send arbitrary network traffic to the monitored port, the attacker could prevent Packetbeat from properly logging other PostgreSQL traffic.
{ "github_reviewed_at": "2021-05-19T22:35:34Z", "cwe_ids": [ "CWE-404" ], "severity": "HIGH", "nvd_published_at": null, "github_reviewed": true }