Filebeat versions up to and including 7.17.9 and 8.6.2 have a flaw in httpjson input that allows the http request Authorization or Proxy-Authorization header contents to be leaked in the logs when debug logging is enabled.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
elastic filebeat 8.6.2 |
||
elastic filebeat |