Primary

Context

Elastic Defend Improper Handling of Alternate Encoding Leading to Crash Vulnerability

Vulnerability

A vulnerability exists in Elastic Defend on Windows systems, where improper handling of multibyte character encoding can lead to an uncaught exception. This exception causes Elastic Defend to crash, preventing the application from quarantining files or terminating processes as needed. The issue affects versions of Elastic Defend prior to 8.13.3.

Impact

Exploitation of this vulnerability causes Elastic Defend to crash, disrupting its ability to perform file quarantining and process termination tasks.

Remediation

Users can upgrade to Elastic Defend version 8.13.3 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Elastic Defend Improper Handling of Alternate Encoding Leading to Crash Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating