cve/CVE-2015-5619.md at 88e5fb8579a05a745ee9298121063720b1e1feba

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Logstash 1.4.x before 1.4.5 and 1.5.x before 1.5.4 with Lumberjack output or the Logstash forwarder does not validate SSL/TLS certificates from the Logstash server, which might allow attackers to obtain sensitive information via a man-in-the-middle attack.

POC

Reference

http://packetstormsecurity.com/files/133269/Logstash-1.5.3-Man-In-The-Middle.html

Github

No PoCs found on GitHub currently.

758 B Raw Blame History

CVE-2015-5619

Description

POC

Reference

Github

758 B

Raw Blame History