Back to Advisories
🔔 CVE Advisory

CVE-2021-37942

Elastic APM

A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious plugin to an application running the APM Java agent. By using this vulnerability, an attacker could execute code at a potentially higher level of permissions than their user typically has access to.

Year 2021
Published December 10, 2021

Advisory Information

Affected Product Elastic APM
Title CVE-2021-37942
Description

A local privilege escalation issue was found with the APM Java agent, where a user on the system could attach a malicious plugin to an application running the APM Java agent. By using this vulnerability, an attacker could execute code at a potentially higher level of permissions than their user typically has access to.

Year 2021
Published Date December 10, 2021
View Full CVE Advisory

Affected Vendors

E
Elastic

Research Team

TP
Trung Pham