CVE-2024-50608

High CVSS: 7.5

An issue was discovered in Fluent Bit 3.1.9. When the Prometheus Remote Write input plugin is running and listening on an IP address and port, one can send a packet with Content-Length: 0 and it crashes the server. Improper handling of the case when Content-Length is 0 allows a user (with access to the endpoint) to perform a remote Denial of service attack. The crash happens because of a NULL pointer dereference when 0 (from the Content-Length) is passed to the function cfl_sds_len, which in turn tries to cast a NULL pointer into struct cfl_sds. This is related to process_payload_metrics_ng() at prom_rw_prot.c.

Vendor

Treasuredata

Product

Fluent Bit

CWE

CWE-476

Yayın Tarihi

2025-02-18 18:15:25

Güncelleme

2025-04-22 14:54:16

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-476 Fluent Bit HIGH Treasuredata 2025

Referanslar

https://fluentbit.io/announcements/ https://github.com/fluent/fluent-bit/releases https://www.ebryx.com/blogs/exploring-cve-2024-50608-and-cve-2024-50609

Benzer Kayıtlar

Medium

CVE-2025-12969

Fluent Bit in_forward input plugin does not properly enforce the security.users authentication mechanism under certain c…

High

CVE-2025-12970

The extract_name function in Fluent Bit in_docker input plugin copies container names into a fixed size stack buffer wit…

Medium

CVE-2025-12972

Fluent Bit out_file plugin does not properly sanitize tag values when deriving output file names. When the File option i…

Critical

CVE-2025-12977

Fluent Bit in_http, in_splunk, and in_elasticsearch input plugins fail to sanitize tag_key inputs. An attacker with netw…

Medium

CVE-2025-12978

Fluent Bit in_http, in_splunk, and in_elasticsearch input plugins contain a flaw in the tag_key validation logic that fa…

Medium

CVE-2025-29478

An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the cfl_list_size in cfl_list.h:…