CVE-2024-23448 | Elastic APM Server up to 8.12.0 Error log file

Posted by Angelo Barbosa | Feb 8, 2024 | CVE

A vulnerability classified as problematic has been found in Elastic APM Server up to 8.12.0. Affected is an unknown function of the component Error Handler. The manipulation leads to sensitive information in log files.

This vulnerability is traded as CVE-2024-23448. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23448 | Elastic APM Server up to 8.12.0 Error log file

Related Posts

CVE-2024-5217 | ServiceNow Now Platform incomplete blacklist (KB1648313)

CVE-2024-6213 | SourceCodester Food Ordering Management System up to 1.0 Login Panel login.php username sql injection

CVE-2024-1719 | scottpaterson Easy PayPal & Stripe Buy Now Button Plugin up to 2.1 on WordPress Setting wpecpp_stripe_connect_completion cross-site request forgery

CVE-2024-36930 | Linux Kernel up to 6.1.90/6.6.30/6.8.9 spi_sync null pointer dereference