On February 21, 2019, Elastic Engineering addressed the runc vulnerability affecting older versions of Docker, which could potentially impact Elastic Cloud Enterprise (ECE) users by allowing attackers to gain administrative privileges through compromised containers. Although the Elasticsearch Service, based on ECE, remains secure with continuous monitoring and patching, ECE users are advised to upgrade their Docker engine and monitor runc binaries to mitigate risks. Elastic emphasizes that ECE incorporates multiple security measures to prevent privilege escalation, including running the Elastic Stack as a non-root user and restricting container modifications. The company recommends that users running ECE 2.x upgrade to the latest Docker version, while those on ECE 1.x should move to ECE 2.1, which is compatible with newer Docker versions. Elastic offers support and consulting services to assist users in managing the upgrades and addressing any concerns regarding the vulnerability.