CVE-2015-5619
Severity CVSS v4.0:
Pending analysis
Type:
CWE-295
Improper Certificate Validation
Publication date:
09/08/2017
Last modified:
20/04/2025
Description
Logstash 1.4.x before 1.4.5 and 1.5.x before 1.5.4 with Lumberjack output or the Logstash forwarder does not validate SSL/TLS certificates from the Logstash server, which might allow attackers to obtain sensitive information via a man-in-the-middle attack.
Impact
Base Score 3.x
5.90
Severity 3.x
MEDIUM
Base Score 2.0
4.30
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:elastic:logstash:1.4.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elastic:logstash:1.4.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elastic:logstash:1.4.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elasticsearch:logstash:1.4.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elasticsearch:logstash:1.4.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elasticsearch:logstash:1.5.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elasticsearch:logstash:1.5.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elasticsearch:logstash:1.5.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:elasticsearch:logstash:1.5.3:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://packetstormsecurity.com/files/133269/Logstash-1.5.3-Man-In-The-Middle.html
- http://www.securityfocus.com/archive/1/536294/100/0/threaded
- http://www.securityfocus.com/archive/1/536858/100/0/threaded
- http://www.securityfocus.com/bid/76455
- https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-released
- http://packetstormsecurity.com/files/133269/Logstash-1.5.3-Man-In-The-Middle.html
- http://www.securityfocus.com/archive/1/536294/100/0/threaded
- http://www.securityfocus.com/archive/1/536858/100/0/threaded
- http://www.securityfocus.com/bid/76455
- https://www.elastic.co/blog/logstash-1-5-4-and-1-4-5-released