CVE-2021-37942

low-risk
Published 2023-11-22

A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious plugin to an application running the APM Java agent. By using this vulnerability, an attacker could execute code at a potentially higher level of permissions than their user typically has access to.

Do I need to act?

-
0.09% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.0/10 High
LOCAL / HIGH complexity

Affected Products (1)

Apm Java Agent

Affected Vendors

Elastic

References (4)

Vendor Advisory https://discuss.elastic.co/t/apm-java-agent-security-update/291355
Product https://www.elastic.co/community/security
Vendor Advisory https://discuss.elastic.co/t/apm-java-agent-security-update/291355
Product https://www.elastic.co/community/security
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal