Elastic Defend
Approved changes feed: RSS · Atom
cpe:2.3:a:elastic:elastic_defend:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Elastic (1d0b8d2a-fd47-5b20-b005-34326f9bd037) |
|---|---|
| Product | Elastic Defend (e9d1c6c0-0b23-5d25-9188-68c369d0b560) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-25013 |
vulnerable | 2026-06-03 14:59:57.554676 |
Elastic Defend Insertion of Sensitive Information into Log Files
MEDIUM (6.5)
Improper restriction of environment variables in Elastic Defend can lead to exposure of sensitive information such as API keys and tokens via automatic transmission of unfiltered environment variables to the stack.
Published: 2025-04-08T22:16:00.886Z
Updated: 2025-04-09T19:28:32.185Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-37284 |
vulnerable | 2026-06-03 14:56:06.243612 |
Elastic Defend Improper Handling of Alternate Encoding Leads to Crash
MEDIUM (5.5)
Improper handling of alternate encoding occurs when Elastic Defend on Windows systems attempts to scan a file or process encoded as a multibyte character. This leads to an uncaught exception causing Elastic Defend to crash which in turn will prevent it from quarantining the file and/or killing the process.
Published: 2025-01-21T10:56:14.762Z
Updated: 2025-01-21T16:32:03.006Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.