Elastic Stack 6.6.2 and 5.6.16 security update

(Josh Bressers) #1

Winlogbeat insufficient logging issue (ESA-2019-06)

Nate Guagenti (@ neu5ron), solutions engineer with Perched Inc. reported an issue in Winlogbeat versions before 5.6.16 and 6.6.2 had an insufficient logging flaw. An attacker able to inject certain characters into a log entry could prevent Winlogbeat from recording the event.

Affected Versions
Winlogbeat versions before 5.6.16 and 6.6.2

Solutions and Mitigations:
Users should upgrade to Winlogbeat version 6.6.2 or 5.6.16

CVE ID: CVE-2019-7613

1 Like