Elastic Defend Insertion of Sensitive Information into Log Files (ESA-2025-05)
Improper restriction of environment variables in Elastic Defend can lead to exposure of sensitive information such as API keys and tokens via automatic transmission of unfiltered environment variables to the stack.
This issue only affects users running Elastic Defend on the macOS platform.
Affected Versions:
Elastic Defend versions before 8.17.3
Solutions and Mitigations:
The issue is resolved in version 8.17.3 and higher
Severity: CVSSv3.1: 6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVE ID: CVE-2025-25013