CVE-2025-29477

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:H

Name of the Vulnerable Software and Affected Versions fluent-bit version 3.7.2

Description The issue allows a local attacker to cause a denial of service via the consume event function.

Recommendations For fluent-bit version 3.7.2, as a temporary workaround, consider disabling the consume event function until a patch is available.

Exploit

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

AZL-59582

AZL-59586

BIT-FLUENT-BIT-2025-29477

CVE-2025-29477

Affected Products

Fluent-Bit

CVE-2025-29477

Weakness Enumeration

Related Identifiers

Affected Products

References · 11