Node.js 1.1.9 vulnerability in elastic docker agent image CVE-2023-4228

miksonx · March 18, 2024, 1:03pm

This issue is related to docker image elastic-agent-complete (8.12.1, 8.12.2)

According the CVE-2023-4228 the Node.js 1.1.9 version is vulnerable.

Description

The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperly categorized as globally routable via isPublic.

Base Score: 9.8 CRITICAL

Please remediate the vulnerability and provide latest image without vulnerability.

georgii · March 18, 2024, 1:39pm

Hi @miksonx, thank you for letting us know. Elastic accepts reports / information about security vulnerabilities in Elastic products via security@elastic.co. Could you please send an email to this address? This would kick off the process of addressing this issue.

Topic		Replies	Views
Node.js vulnerabilities Kibana	3	513	May 10, 2024
Elastic Agent / Elastic Endpoint Security Security Update (ESA-2025-03) Security Announcements	0	1356	May 1, 2025
High Vulnerabilities found in Elasticsearch docker image v7.17.9 Elasticsearch docker	3	825	March 20, 2023
ElasticSearch affected by CVE-2023-44487 Elastic Security docker	1	486	January 30, 2024
Openssl-1.1.1f-1ubuntu2.24 in ELK docker container with critical vulnerability Elastic Search docker	2	66	April 17, 2025

Node.js 1.1.9 vulnerability in elastic docker agent image CVE-2023-4228

Description

Related topics