BIT-fluent-bit-2024-26455

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/fluent-bit/BIT-fluent-bit-2024-26455.json
JSON Data
https://api.test.osv.dev/v1/vulns/BIT-fluent-bit-2024-26455
Aliases
Published
2025-05-13T05:36:46.231Z
Modified
2025-05-13T06:27:07.867314Z
Summary
[none]
Details

fluent-bit 2.2.2 contains a Use-After-Free vulnerability in /fluent-bit/plugins/custom_calyptia/calyptia.c.

Database specific 
{
    "severity": "High",
    "cpes": [
        "cpe:2.3:a:treasuredata:fluent_bit:*:*:*:*:*:*:*:*"
    ]
}
References

Affected packages

Bitnami / fluent-bit

Package

Name
fluent-bit
Purl
pkg:bitnami/fluent-bit

Severity

  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
2.2.2
Fixed
2.2.3

Database specific

source 
"https://github.com/bitnami/vulndb/tree/main/data/fluent-bit/BIT-fluent-bit-2024-26455.json"