CVE-2025-37728 | Elastic Kibana up to 7.17.29/8.18.7/8.19.4/9.0.7/9.1.4 Crowdstrike Connector insufficiently protected credentials

A vulnerability identified as problematic has been detected in Elastic Kibana up to 7.17.29/8.18.7/8.19.4/9.0.7/9.1.4. The affected element is an unknown function of the component Crowdstrike Connector. Performing manipulation results in insufficiently protected credentials.

This vulnerability is cataloged as CVE-2025-37728. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More