Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Elastic Agent Insertion of Sensitive Information into Log File
Vulnerability Description
An issue was discovered whereby Elastic Agent will leak secrets from the agent policy elastic-agent.yml only when the log level is configured to debug. By default the log level is set to info, where no leak occurs.
CVSS Information
N/A
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Elastic Agent 安全漏洞
Vulnerability Description
Elastic Agent是荷兰Elastic公司的一个单一代理。可从每台主机收集日志、指标、跟踪、可用性、安全性和其他数据。 Elastic Agent存在安全漏洞,该漏洞源于当日志配置级别设置为debug时,会从agent策略文件elastic-agent.yml中泄露秘密。
CVSS Information
N/A
Vulnerability Type
N/A