CVE-2021-37759: Inclusion of Sensitive Information in Log Files
(updated )
A Session ID leak in the DEBUG log file in Graylog allows attackers to escalate privileges (to the access level of the leaked session ID).
References
Detect and mitigate CVE-2021-37759 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →