3 matches found
CVE-2021-37760
A Session ID leak in the audit log in Graylog before 4.1.2 allows attackers to escalate privileges to the access level of the leaked session ID...
CVE-2021-37760
A Session ID leak in the audit log in Graylog before 4.1.2 allows attackers to escalate privileges to the access level of the leaked session ID...
CVE-2021-37760
CVE-2021-37760 affects Graylog prior to version 4.1.2. The vulnerability is a Session ID leak in the audit log that can enable an attacker to escalate privileges to the leaked session’s access level. The issue’s root cause is the exposure of session identifiers in audit logs, allowing escalation ...