CVE-2025-37727 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the…
Medium CVSS: 5.7

CVE-2025-37727

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex
Vendor
Elastic
Product
Elasticsearch
CWE
CWE-532
Yayın Tarihi
2025-10-10 10:15:34
Güncelleme
2025-12-23 17:39:24
Source Identifier
security@elastic.co
KEV Date Added
-

Kategoriler

CWE-532 Elasticsearch MEDIUM Elastic 2025

Referanslar

https://discuss.elastic.co/t/elasticsearch-8-18-8-8-19-5-9-0-8-9-1-5-security-update-esa-2025-18/382453