漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Elastic Agent Insertion of Sensitive Information into Log File
Vulnerability Description
An issue was discovered whereby Elastic Agent will leak secrets from the agent policy elastic-agent.yml only when the log level is configured to debug. By default the log level is set to info, where no leak occurs.
CVSS Information
N/A
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Elastic Agent 安全漏洞
Vulnerability Description
Elastic Agent是荷兰Elastic公司的一个单一代理。可从每台主机收集日志、指标、跟踪、可用性、安全性和其他数据。 Elastic Agent存在安全漏洞,该漏洞源于当日志配置级别设置为debug时,会从agent策略文件elastic-agent.yml中泄露秘密。
CVSS Information
N/A
Vulnerability Type
N/A