A Session ID leak in the audit log in Graylog before 4.1.2 allows attackers to escalate privileges (to the access level of the leaked session ID).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.graylog.org/post/announcing-graylog-v4-1-2 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-07-31T17:35:00
Updated: 2024-08-04T01:30:07.509Z
Reserved: 2021-07-31T00:00:00
Link: CVE-2021-37760
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-07-31T18:15:07.887
Modified: 2024-11-21T06:15:52.483
Link: CVE-2021-37760
Redhat
No data.