CVE-2024-37286 | Elastic APM Server up to 8.13.x unavailable_shards_exception log file

Posted by Angelo Barbosa | Aug 3, 2024 | CVE

A vulnerability classified as problematic was found in Elastic APM Server up to 8.13.x. Affected by this vulnerability is the function unavailable_shards_exception. The manipulation leads to sensitive information in log files.

This vulnerability is known as CVE-2024-37286. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37286 | Elastic APM Server up to 8.13.x unavailable_shards_exception log file

Related Posts

CVE-2024-25506 | ProcessMaker up to 3.x Cookie pm_sys_sys cross site scripting

CVE-2024-31252 | dFactory Responsive Lightbox Plugin up to 2.4.6 on WordPress authorization

CVE-2024-1904 | MasterStudy LMS Plugin up to 3.2.13 on WordPress search_posts authorization

CVE-2024-2277 | Bdtask G-Prescription Gynaecology & OBS Consultation Software Password Reset change_password_save cross-site request forgery