Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the proxy header. This could result in an attacker redirecting collected APM data to a proxy of their choosing.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Elasticsearch Elastic APM agent for Python 输入验证错误漏洞
Vulnerability Description
Elasticsearch Elastic APM agent for Python是荷兰Elasticsearch公司的一款基于Python的Elastic APM(应用程序性能监控)代理程序。 Elasticsearch Elastic APM agent for Python 5.1.0之前版本中存在安全漏洞。攻击者可利用该漏洞将被收集到的APM数据重定向到攻击者所选择的代理中。
CVSS Information
N/A
Vulnerability Type
N/A