VYPR
High severity7.5NVD Advisory· Published Jun 16, 2017· Updated Jun 17, 2026

CVE-2016-1000222

CVE-2016-1000222

Description

Logstash prior to version 2.1.2, the CSV output can be attacked via engineered input that will create malicious formulas in the CSV data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Elastic/Logstash2 versions
    cpe:2.3:a:elastic:logstash:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:elastic:logstash:*:*:*:*:*:*:*:*range: <=2.1.1
    • (no CPE)range: <2.1.2
  • Logstash/Logstashllm-create
    Range: <2.1.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.