Security News > 2024 > May > Critical Fluent Bit flaw affects major cloud platforms, tech companies’ offerings (CVE-2024-4323)
2024-05-21 11:21
Tenable researchers have discovered a critical vulnerability (CVE-2024-4323) in Fluent Bit, a logging utility used by major cloud providers and tech companies, which may be leveraged for denial of service, information disclosure, or remote code execution. About CVE-2024-4323 Fluent Bit is an open-source data collection, processing and forwarding utility for Linux, BSD, macOS and Windows that can easily handle large volumes of log data, which is why the likes of Google Cloud, AWS, Digital Ocean, … More → The post Critical Fluent Bit flaw affects major cloud platforms, tech companies’ offerings (CVE-2024-4323) appeared first on Help Net Security.
News URL
https://www.helpnetsecurity.com/2024/05/21/cve-2024-4323/
Related news
- PoC for critical Progress Flowmon vulnerability released (CVE-2024-2389) (source)
- Why cloud vulnerabilities need CVEs (source)
- Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002) (source)
- Critical Fluent Bit flaw impacts all major cloud providers (source)
- Critical Fluent Bit bug affects all major cloud providers, say researchers (source)
- PoC exploits for critical FortiSIEM command execution flaws released (CVE-2024-23108, CVE-2023-34992) (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-20 | CVE-2024-4323 | A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. | 0.0 |