CNNVD-202507-3754 Information
Jul 30, 2025
cve
CNNVD ID
CNNVD-202507-3754
Related CVE
- CNNVD Published: 2025-07-30
Description (Chinese)
Elastic是荷兰Elastic公司的一套基于Lucene构建的开源分布式RESTful搜索引擎。该产品主要应用于云计算,并支持通过HTTP使用JSON进行数据索引。 Elastic存在安全漏洞,该漏洞源于目录权限处理不当,可能导致本地权限提升。
Description (English)
Elastic is an open source distribution RESTful search engine based on Lucene, a Dutch company Elastic. The product is mainly applied to cloud computing and supports data indexing through HTTP using JSON. Elastic has a security loophole, which stems from the inappropriate handling of directory privileges, which may lead to local upgrades.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Elastic
Published
2025-07-30
Last Modified
2026-02-24
References
https://discuss.elastic.co/t/beats-windows-installer-9-1-0-security-update-esa-2025-12/380558
Patch
https://www.elastic.co/downloads/beats
Share on: