github.com/elastic/apm-server (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/elastic/apm-server, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2024-23448 — CVSS 5.7 (medium): An issue was discovered whereby APM Server could log at ERROR level, a response from Elasticsearch indicating that indexing the document…
CVE-2024-37286 — CVSS 5.7 (medium): APM server logs contain document body from a partially failed bulk index request. For example, in case of unavailable_shards_exception for…