Security Advisory

CVE-2021-22133

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-10 18:55:15

Last updated 2024-08-03 18:30:24

Assigner elastic

State PUBLISHED

Description

The Elastic APM agent for Go versions before 1.11.0 can leak sensitive HTTP header information when logging the details during an application panic. Normally, the APM agent will sanitize sensitive HTTP header details before sending the information to the APM server. During an application panic it is possible the headers will not be sanitized before being sent.

← Browse all CVEs View on cve.org ↗