Vulnerabilities > Graylog > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-07-31 CVE-2021-37759 Information Exposure Through Log Files vulnerability in Graylog
A Session ID leak in the DEBUG log file in Graylog before 4.1.2 allows attackers to escalate privileges (to the access level of the leaked session ID).
network
low complexity
graylog CWE-532
critical
 9.8
9.8
2021-07-31 CVE-2021-37760 Information Exposure Through Log Files vulnerability in Graylog
A Session ID leak in the audit log in Graylog before 4.1.2 allows attackers to escalate privileges (to the access level of the leaked session ID).
network
low complexity
graylog CWE-532
critical
 9.8
9.8