Primary

Context

Elastic Metricbeat Denial-of-Service Vulnerability via Improper Input Validation

Vulnerability

A denial-of-service vulnerability has been identified in Elastic Metricbeat versions 7.x, 8.x (up to and including 8.19.9), and 9.x (up to and including 9.1.9 and 9.2.3). The issue arises from improper validation of array indices, allowing attackers to manipulate input data and send specially crafted payloads to the Graphite server or Zookeeper server metricsets. Additionally, the Prometheus helper module in Metricbeat has improper input validation that can also lead to denial-of-service by allowing malformed metric data to be processed.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition, where the application becomes unresponsive or unavailable.

Remediation

Users can upgrade to Metricbeat versions 8.19.10, 9.1.10, or 9.2.4 to address this vulnerability.

Added: Jan 13, 2026, 9:49 PM

Updated: Jan 13, 2026, 9:49 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Elastic Metricbeat Denial-of-Service Vulnerability via Improper Input Validation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating