Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
APM Server Insertion of Sensitive Information into Log File
Vulnerability Description
APM server logs could contain parts of the document body from a partially failed bulk index request. Depending on the nature of the document, this could disclose sensitive information in APM Server error logs.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Elastic APM Server 安全漏洞
Vulnerability Description
Elastic APM Server是荷兰Elastic公司的一个轻量级的 Agent。 Elastic APM Server存在安全漏洞,该漏洞源于部分失败的索引请求导致敏感信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A