CNNVD-202601-1978 Information

CNNVD ID

CNNVD-202601-1978

Related CVE

CVE-2026-0528

• CNNVD Published: 2026-01-13

Description (Chinese)

Elastic Metricbeat是荷兰Elastic公司的一个指标采集器。 Elastic Metricbeat存在安全漏洞，该漏洞源于数组索引验证不当和输入验证不足，可能导致攻击者通过特制畸形有效载荷或指标数据造成拒绝服务。

Description (English)

Elastic Metricbeat is an indicator collector of the Netherlands company Elastic. There is a security loophole in Elastic Metricbeat, which stems from inadequate and inadequate indexing and input validation, which may lead to the attacker ’ s denial of services through specially created abnormal payloads or indicator data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Elastic

Published

2026-01-13

Last Modified

2026-02-24

References

https://discuss.elastic.co/t/metricbeat-8-19-10-9-1-10-9-2-4-security-update-esa-2026-01/384519 https://access.redhat.com/security/cve/cve-2026-0528