Elastic Apm_server

4 CVEs affecting Elastic Apm_server. Latest disclosed: 2024-08-03. Critical: 0, High: 0.

Top CVEs affecting Elastic Apm_server
CVESeverityScorePublishedSummary
CVE-2023-31421Medium5.92023-10-26It was discovered that when acting as TLS clients, Beats, Elastic Agent, APM Server, and Fleet Server did not verify whether the server certificate is valid fo…
CVE-2024-37286Medium5.72024-08-03APM server logs contain document body from a partially failed bulk index request. For example, in case of unavailable_shards_exception for a specific document…
CVE-2024-23448Medium5.72024-02-07An issue was discovered whereby APM Server could log at ERROR level, a response from Elasticsearch indicating that indexing the document failed and that respon…
CVE-2023-31416Medium5.32023-10-26Secret token configuration is never applied when using ECK <2.8 with APM Server >=8.0. This could lead to anonymous requests to an APM Server being accepted an…