Moderate severityOSV Advisory· Published Jan 13, 2026· Updated Jan 13, 2026
Improper Input Validation in Metricbeat Leading to Denial of Service
CVE-2026-0528
Description
Improper Validation of Array Index (CWE-129) exists in Metricbeat can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed payloads sent to the Graphite server metricset or Zookeeper server metricset. Additionally, Improper Input Validation (CWE-20) exists in the Prometheus helper module that can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed metric data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/elastic/beats/v7Go | < 7.0.0-alpha2.0.20251217054608-6e42552a23ce | 7.0.0-alpha2.0.20251217054608-6e42552a23ce |
github.com/elastic/beats/v7Go | >= 8.0.0, < 8.19.10 | 8.19.10 |
github.com/elastic/beats/v7Go | >= 9.0.0, < 9.1.10 | 9.1.10 |
github.com/elastic/beats/v7Go | >= 9.2.0, < 9.2.4 | 9.2.4 |
Affected products
54- osv-coords53 versionspkg:apk/chainguard/agentbeatpkg:apk/chainguard/agentbeat-fipspkg:apk/chainguard/apm-server-8.19pkg:apk/chainguard/apm-server-9.2pkg:apk/chainguard/apm-server-fips-8.19pkg:apk/chainguard/auditbeat-8.19pkg:apk/chainguard/auditbeat-9.1pkg:apk/chainguard/auditbeat-9.2pkg:apk/chainguard/auditbeat-9.3pkg:apk/chainguard/auditbeat-9.4pkg:apk/chainguard/auditbeat-fips-8.19pkg:apk/chainguard/auditbeat-fips-9.1pkg:apk/chainguard/auditbeat-fips-9.2pkg:apk/chainguard/auditbeat-fips-9.3pkg:apk/chainguard/auditbeat-fips-9.4pkg:apk/chainguard/cloudbeat-8.19pkg:apk/chainguard/cloudbeat-9.2pkg:apk/chainguard/cloudbeat-9.3pkg:apk/chainguard/cloudbeat-fips-8.19pkg:apk/chainguard/cloudbeat-fips-9.2pkg:apk/chainguard/cloudbeat-fips-9.3pkg:apk/chainguard/filebeat-8.19pkg:apk/chainguard/filebeat-9.1pkg:apk/chainguard/filebeat-9.2pkg:apk/chainguard/filebeat-9.3pkg:apk/chainguard/filebeat-9.4pkg:apk/chainguard/filebeat-fips-8.19pkg:apk/chainguard/filebeat-fips-9.1pkg:apk/chainguard/filebeat-fips-9.2pkg:apk/chainguard/filebeat-fips-9.3pkg:apk/chainguard/filebeat-fips-9.4pkg:apk/chainguard/heartbeat-8.19pkg:apk/chainguard/heartbeat-9.1pkg:apk/chainguard/heartbeat-9.2pkg:apk/chainguard/heartbeat-9.3pkg:apk/chainguard/heartbeat-9.4pkg:apk/chainguard/heartbeat-fips-8.19pkg:apk/chainguard/heartbeat-fips-9.1pkg:apk/chainguard/heartbeat-fips-9.2pkg:apk/chainguard/heartbeat-fips-9.3pkg:apk/chainguard/heartbeat-fips-9.4pkg:apk/chainguard/metricbeat-8.19pkg:apk/chainguard/metricbeat-9.1pkg:apk/chainguard/metricbeat-9.2pkg:apk/chainguard/metricbeat-9.3pkg:apk/chainguard/metricbeat-9.4pkg:apk/chainguard/metricbeat-fips-8.19pkg:apk/chainguard/metricbeat-fips-9.1pkg:apk/chainguard/metricbeat-fips-9.2pkg:apk/chainguard/metricbeat-fips-9.3pkg:apk/chainguard/metricbeat-fips-9.4pkg:golang/github.com/elastic/beats/v7pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6
< 0+ 52 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 8.19.11-r0
- (no CPE)range: < 9.2.4-r0
- (no CPE)range: < 8.19.11-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.2.5-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 8.19.12-r0
- (no CPE)range: < 9.2.6-r0
- (no CPE)range: < 9.3.1-r0
- (no CPE)range: < 8.19.12-r0
- (no CPE)range: < 9.2.6-r0
- (no CPE)range: < 9.3.0-r2
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.2.5-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.2.5-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.2.5-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 9.4.1-r4
- (no CPE)range: < 7.0.0-alpha2.0.20251217054608-6e42552a23ce
- (no CPE)range: < 0.0.20260317T205859-150000.1.152.1
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-w2gr-585j-r428ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-0528ghsaADVISORY
- discuss.elastic.co/t/metricbeat-8-19-10-9-1-10-9-2-4-security-update-esa-2026-01/384519ghsaWEB
- github.com/elastic/beats/commit/0025fbfe668936eb8fa65b838508faf3c3c04387ghsaWEB
- github.com/elastic/beats/commit/6e42552a23cec734e7977ebd3eb7fb797ddce456ghsaWEB
- github.com/elastic/beats/commit/c7664c91a5a68c2df782bfeffe4fb7f42ff2ad1aghsaWEB
News mentions
0No linked articles in our index yet.