Xu-Xiang

**Name of the Vulnerable Software and Affected Versions** Fluent Fluentd version 1.8.0 Fluent-ui version 1.2.2 **Description** The issue is related to the use of a default password in Fluent Fluentd and its browser manager fluentd-ui, allowing attackers to gain escalated privileges and execute arbitrary code. This can be exploited by a remote attacker. **Recommendations** For Fluent Fluentd version 1.8.0, change the default password to a unique and strong password to prevent exploitation. For Fluent-ui version 1.2.2, update the configuration to use a custom password instead of the default one to mitigate the risk of arbitrary code execution.