Security Advisory

CVE-2025-37728

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-07 13:54:49

Last updated 2025-10-07 15:28:49

Assigner elastic

State PUBLISHED

Description

Insufficiently Protected Credentials in the Crowdstrike connector can lead to Crowdstrike credentials being leaked. A malicious user can access cached credentials from a Crowdstrike connector in another space by creating and running a Crowdstrike connector in a space to which they have access.

← Browse all CVEs View on cve.org ↗