Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-68382

Out-of-bounds read (CWE-125) allows an unauthenticated remote attacker to perform a buffer overflow (CAPEC-100) via the NFS protocol dissector, leading to a denial-of-service (DoS) through a reliable process crash when handling truncated XDR-encoded RPC messages.

Published

2025-12-18T22:16:02.233

Last Modified

2025-12-23T17:43:20.107

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-125

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	elasticsearch	packetbeat	≤ 7.17.29	Yes
Application	elasticsearch	packetbeat	< 8.19.9	Yes
Application	elasticsearch	packetbeat	< 9.1.9	Yes
Application	elasticsearch	packetbeat	< 9.2.3	Yes

References

https://discuss.elastic.co/t/packetbeat-8-19-9-9-1-9-and-9-2-3-security-update-esa-2025-31/384179 Vendor Advisory ([email protected])