Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-68381

Improper Bounds Check (CWE-787) in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow (CAPEC-100) and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number.

Published

2025-12-18T22:16:02.070

Last Modified

2025-12-23T17:42:32.230

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	elasticsearch	packetbeat	≤ 7.17.29	Yes
Application	elasticsearch	packetbeat	< 8.19.9	Yes
Application	elasticsearch	packetbeat	< 9.1.9	Yes
Application	elasticsearch	packetbeat	< 9.2.3	Yes

References

https://discuss.elastic.co/t/packetbeat-8-19-9-9-1-9-and-9-2-3-security-update-esa-2025-30/384178 Vendor Advisory ([email protected])