CNNVD-202510-1068 Information

Oct 07, 2025 cve

CNNVD ID

CNNVD-202510-1068

CVE-2025-37728

CNNVD Published: 2025-10-07

Description (Chinese)

Elastic Kibana是Elastic公司的一个可用数据可视化仪表板软件。 Elastic Kibana存在安全漏洞，该漏洞源于Crowdstrike connector中凭据保护不足，可能导致凭据泄露。

Description (English)

Elastic Kibana is a usable data visualization dashboard software for Elastic. Elastic Kibana had a security loophole, which stemmed from inadequate evidence protection in Crowdstrike connector, which could lead to disclosure.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Elastic

Published

2025-10-07

Last Modified

2026-02-24

References

https://discuss.elastic.co/t/kibana-crowdstrike-connector-8-18-8-8-19-5-9-0-8-and-9-1-5-security-update-esa-2025-19/382455 https://access.redhat.com/security/cve/cve-2025-37728

Patch

https://www.elastic.co/downloads/kibana

Share on: