CVE-2025-25011 — Uncontrolled Search Path Element in Beats

CWE-427 — Uncontrolled Search Path Element CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

7.0HIGHNVD

EPSS

0.0%

top 97.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Elastic Beats

Timeline

PublishedJul 30

Description

An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE) via Insecure Directory Permissions. The vulnerability arises from improper handling of directory permissions. An attacker with local access may exploit this flaw to move and delete arbitrary files, potentially gaining SYSTEM privileges.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages1 packages

▶CVEListV5elastic/beats8.0.0 — 9.1.0

🔴Vulnerability Details

GHSA

GHSA-h425-rqxh-h66f: An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE) via Insecure Directory Permissions↗2025-07-30

▶

CVEList

Beats Uncontrolled Search Path Element can lead to Local Privilege Escalation (LPE) when using the Windows Installer↗2025-07-30

▶

📋Vendor Advisories

Microsoft

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().↗2021-05-11

▶