CNNVD-202511-756 Information

CNNVD ID

CNNVD-202511-756

Related CVE

CVE-2025-37736

• CNNVD Published: 2025-11-07

Description (Chinese)

Elastic Cloud Enterprise是荷兰Elastic公司的一种云平台。使在云中部署、操作和扩展 Elastic Stack 变得容易。 Elastic Cloud Enterprise存在安全漏洞，该漏洞源于授权不当，可能导致权限提升。

Description (English)

Elastic Cloud Enterprise is a cloud platform for the Dutch company Elastic. It makes it easier to deploy, operate and expand Elastic Stack in the clouds. There is a security loophole in Elastic Cloud Enterprise, which stems from inappropriate authorization and may lead to increased authority.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Elastic

Published

2025-11-07

Last Modified

2026-02-24

References

https://discuss.elastic.co/t/elastic-cloud-enterprise-ece-3-8-3-and-4-0-3-security-update-esa-2025-22/383132 https://access.redhat.com/security/cve/cve-2025-37736

Patch

https://discuss.elastic.co/t/elastic-cloud-enterprise-ece-3-8-3-and-4-0-3-security-update-esa-2025-22/383132