Elastic Fleet Server

3 CVEs affecting Elastic Fleet Server. Latest disclosed: 2025-01-23. Critical: 1, High: 1.

Top CVEs affecting Elastic Fleet Server
CVESeverityScorePublishedSummary
CVE-2024-52975Critical9.02025-01-23An issue was identified in Fleet Server where Fleet policies that could contain sensitive information were logged on INFO and ERROR log levels. The nature of t…
CVE-2023-46667High8.12023-10-26An issue was discovered in Fleet Server >= v8.10.0 and < v8.10.3 where Agent enrolment tokens are being inserted into the Fleet Server’s log file in plain text…
CVE-2023-31421Medium5.92023-10-26It was discovered that when acting as TLS clients, Beats, Elastic Agent, APM Server, and Fleet Server did not verify whether the server certificate is valid fo…