cbcvebase.
CVE-2025-37735
published 2025-11-06

CVE-2025-37735: Improper preservation of permissions in Elastic Defend on Windows hosts can lead to arbitrary files on the system being deleted by the Defend service running…

PriorityP336high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
EPSS
0.13%
3.1th percentile
Improper preservation of permissions in Elastic Defend on Windows hosts can lead to arbitrary files on the system being deleted by the Defend service running as SYSTEM. In some cases, this could result in local privilege escalation.

Affected

2 ranges
VendorProductVersion rangeFixed in
elastickibana8.0.0 – 8.19.5
elastickibana9.0.0 – 9.1.5
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.