securityonline.info 7/1/2026, 2:41:39 AM · external

Fluentd fixes critical RCE bug CVE-2026-44024 in log collector

Fluentd fixes critical RCE bug CVE-2026-44024 in log collector

THE Fluentd project has patched four significant security vulnerabilities in version 1.19.3, with the most critical being CVE-2026-44024, which allows for remote code execution (RCE) with a severity score of 9.8. The other vulnerabilities include server-side request forgery (CVE-2026-44161), credential exposure (CVE-2026-44025), and denial of service (CVE-2026-44160). These issues can lead to severe consequences, especially in cloud environments, where Fluentd is commonly deployed to manage logs. Users are urged to upgrade to version 1.19.3 immediately to mitigate these risks.

View Primary Source Via securityonline.info

Article by CyberSIXT