CVE-2025-25013

Name of the Vulnerable Software and Affected Versions: Elastic Defend (affected versions not specified)

Description: The issue is related to the improper restriction of environment variables in Elastic Defend, which can lead to the exposure of sensitive information such as API keys and tokens. This exposure occurs due to the automatic transmission of unfiltered environment variables to the stack.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.