Elastic
Security Scorecard
Score
90B
Total CVEs
12
Patch Rate
83%
10 patched
Avg Response
-
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical0
High1
Medium11
Low0
Patch Status
Patched10 (83%)
Partial/Workaround0 (0%)
Unpatched2 (17%)
CVEs (18)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2026-0528 | Metricbeat Graphite Server Denial of Service | Medium | 6.5 | - | Patched |
| CVE-2026-0530 | Kibana Fleet Resource Exhaustion | Medium | 6.5 | - | Patched |
| CVE-2026-0531 | Kibana Fleet Excessive Allocation Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2026-0543 | Kibana Email Connector Excessive Allocation | Medium | 6.5 | - | Patched |
| CVE-2025-68381 | Packetbeat Buffer Overflow | Medium | 6.5 | - | Patched |
| CVE-2025-68382 | NFS Dissector Buffer Overflow | Medium | 6.5 | - | Patched |
| CVE-2025-68384 | Elasticsearch OOM Crash Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2025-68383 | Elasticsearch Buffer Overflow Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2025-68388 | Elasticsearch Packetbeat Resource Exhaustion Vulnerability | Medium | 5.3 | - | Patched |
| CVE-2025-9624 | - | High | 7.5 | 18d | Unpatched |