CVE-2025-37727
ADVISORY - githubSummary
Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex
EPSS Score: 0.00037 (0.106)
Common Weakness Enumeration (CWE)
ADVISORY - nist
Insertion of Sensitive Information into Log File
ADVISORY - github
Insertion of Sensitive Information into Log File
ADVISORY - redhat
Insertion of Sensitive Information into Log File
Sign in to Docker Scout
See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.
Sign in