Vulnerabilities > CVE-2020-21514 - Unspecified vulnerability in Fluentd and Fluentd-Ui

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

fluentd

NVD

Published: 2023-04-04

Updated: 2023-08-10

Summary

An issue was discovered in Fluent Fluentd v.1.8.0 and Fluent-ui v.1.2.2 allows attackers to gain escalated privileges and execute arbitrary code due to a default password.

Vulnerable Configurations

Part	Description	Count
Application	Fluentd Fluentd Fluentd UI 1.2.2 Fluentd Fluentd 1.8.0	2

References

https://github.com/fluent/fluentd/issues/2722