Winlogbeat insufficient logging issue (ESA-2019-06)
Nate Guagenti (@ neu5ron), solutions engineer with Perched Inc. reported an issue in Winlogbeat versions before 5.6.16 and 6.6.2 had an insufficient logging flaw. An attacker able to inject certain characters into a log entry could prevent Winlogbeat from recording the event.
Affected Versions
Winlogbeat versions before 5.6.16 and 6.6.2
Solutions and Mitigations:
Users should upgrade to Winlogbeat version 6.6.2 or 5.6.16
CVE ID: CVE-2019-7613