CVE-2025-25011

HIGH 7.0

Beats Uncontrolled Search Path Element can lead to Local Privilege Escalation (LPE) when using the Windows Installer

CVSS Score

7.0

EPSS Score

0.0%

EPSS Percentile

0th

An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE) via Insecure Directory Permissions. The vulnerability arises from improper handling of directory permissions. An attacker with local access may exploit this flaw to move and delete arbitrary files, potentially gaining SYSTEM privileges.

CWE	CWE-427
Vendor	elastic
Product	beats
Published	Jul 30, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for elastic beats

Be the first to know when new high vulnerabilities affecting elastic beats are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Elastic / Beats

8.0.0 < 9.1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

discuss.elastic.co: https://discuss.elastic.co/t/beats-windows-installer-9-1-0-security-update-esa-2025-12/380558