Security News > 2024 > May > Critical Fluent Bit flaw affects major cloud platforms, tech companies’ offerings (CVE-2024-4323)
2024-05-21 11:21
Tenable researchers have discovered a critical vulnerability (CVE-2024-4323) in Fluent Bit, a logging utility used by major cloud providers and tech companies, which may be leveraged for denial of service, information disclosure, or remote code execution. About CVE-2024-4323 Fluent Bit is an open-source data collection, processing and forwarding utility for Linux, BSD, macOS and Windows that can easily handle large volumes of log data, which is why the likes of Google Cloud, AWS, Digital Ocean, … More → The post Critical Fluent Bit flaw affects major cloud platforms, tech companies’ offerings (CVE-2024-4323) appeared first on Help Net Security.
News URL
https://www.helpnetsecurity.com/2024/05/21/cve-2024-4323/
Related news
- ⚡ Weekly Recap: APT Campaigns, Browser Hijacks, AI Malware, Cloud Breaches and Critical CVEs (source)
- MITRE warns that funding for critical CVE program expires today (source)
- CISA extends funding to ensure 'no lapse in critical CVE services' (source)
- PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) (source)
- Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) (source)
- Critical SAP NetWeaver flaw exploited by suspected initial access broker (CVE-2025-31324) (source)
- ⚡ Weekly Recap: Critical SAP Exploit, AI-Powered Phishing, Major Breaches, New CVEs & More (source)
- China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-20 | CVE-2024-4323 | Out-of-bounds Write vulnerability in Treasuredata Fluent BIT A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. | 9.8 |