Vulnerability Details CVE-2023-31413
Filebeat versions through 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.3%
CVSS Severity
CVSS v3 Score 3.3
Products affected by CVE-2023-31413
-
cpe:2.3:a:elastic:filebeat:*
-
cpe:2.3:a:elastic:filebeat:8.6.2