Elastic Defend 8.13.3 Security Update (ESA-2024-24)

ismisepaul · January 21, 2025, 10:48am

Elastic Defend Improper Handling of Alternate Encoding Leads to Crash (ESA-2024-24)

Improper handling of alternate encoding occurs when Elastic Defend on Windows systems attempts to scan a file or process encoded as a multibyte character. This leads to an uncaught exception causing Elastic Defend to crash which in turn will prevent it from quarantining the file and/or killing the process.

Affected Versions:
Versions up to 8.13.3

Solutions and Mitigations:
The issue is resolved in version 8.13.3.

Severity: CVSSv3.1: 5.5 Medium - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CVE ID: CVE-2024-37284

Topic		Replies	Views
Elasticsearch 7.17.14 / 8.10.3 Security Update (ESA-2023-24) Security Announcements	0	11733	November 22, 2023
Elastic Defend - Folder- Extensions and Process-exceptions Elastic Security	2	361	November 9, 2023
Elastic 7.17.9, 8.5.0 and 8.6.1 Security Update Security Announcements	0	15086	February 3, 2023
APM Server 8.14.0 Security Update (ESA-2024-19) Security Announcements	0	1017	August 2, 2024
Elasticsearch 8.13.0 / 7.17.19 Security Update (ESA-2024-06) Security Announcements	0	8322	March 27, 2024

Elastic Defend 8.13.3 Security Update (ESA-2024-24)

Related topics