Home/Product/treasuredata fluent bit
Product

treasuredata fluent bit

18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-12978
all versions
Fluent Bit in_http, in_splunk, and in_elasticsearch input plugins contain a flaw in the tag_key validation logic that fails to enf
5.4MEDIUM
 CVE-2025-12977
all versions
Fluent Bit in_http, in_splunk, and in_elasticsearch input plugins fail to sanitize tag_key inputs. An attacker with network access
9.1CRITICAL
 CVE-2025-12972
all versions
Fluent Bit out_file plugin does not properly sanitize tag values when deriving output file names. When the File option is omitted,
5.3MEDIUM
 CVE-2025-12970
all versions
The extract_name function in Fluent Bit in_docker input plugin copies container names into a fixed size stack buffer without valid
8.8HIGH
 CVE-2025-12969
all versions
Fluent Bit in_forward input plugin does not properly enforce the security.users authentication mechanism under certain configurati
6.5MEDIUM
 CVE-2025-29478
all versions
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the cfl_list_size in cfl_list.h:165.
5.5MEDIUM
 CVE-2025-29477
all versions
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the function consume_event.
5.5MEDIUM
 CVE-2024-50609
all versions
An issue was discovered in Fluent Bit 3.1.9. When the OpenTelemetry input plugin is running and listening on an IP address and por
7.5HIGH
 CVE-2024-50608
all versions
An issue was discovered in Fluent Bit 3.1.9. When the Prometheus Remote Write input plugin is running and listening on an IP addre
7.5HIGH
 CVE-2024-4323
>= 2.0.7 and < 2.2.3
A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedded http server’s parsing
9.8CRITICAL
 CVE-2024-23722
>= 2.1.8 and < 2.2.2
In Fluent Bit 2.1.8 through 2.2.1, a NULL pointer dereference can be caused via an invalid HTTP payload with the content type of x
7.5HIGH
 CVE-2024-26455
all versions
fluent-bit 2.2.2 contains a Use-After-Free vulnerability in /fluent-bit/plugins/custom_calyptia/calyptia.c.
7.5HIGH
 CVE-2021-46879
all versions
An issue was discovered in Treasure Data Fluent Bit 1.7.1, a wrong variable is used to get the msgpack data resulting in a heap ov
7.8HIGH
 CVE-2021-46878
all versions
An issue was discovered in Treasure Data Fluent Bit 1.7.1, erroneous parsing in flb_pack_msgpack_to_json_format leads to type conf
7.8HIGH
 CVE-2021-36088
>= 1.7.0 and <= 1.7.4
Fluent Bit (aka fluent-bit) 1.7.0 through 1.7.4 has a double free in flb_free (called from flb_parser_json_do and flb_parser_do).
9.8CRITICAL
 CVE-2021-27186
all versions
Fluent Bit 1.6.10 has a NULL pointer dereference when an flb_malloc return value is not validated by flb_avro.c or http_server/api
7.5HIGH
 CVE-2020-35963
< 1.6.4
flb_gzip_compress in flb_gzip.c in Fluent Bit before 1.6.4 has an out-of-bounds write because it does not use the correct calculat
7.8HIGH
 CVE-2019-9749
<= 1.0.4
An issue was discovered in the MQTT input plugin in Fluent Bit through 1.0.4. When this plugin acts as an MQTT broker (server), it
7.5HIGH
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh