KV parser truncates values at first space when processing CEF logs with spaces in field values

### Acknowledgements

- [x] I have searched (https://github.com/utmstack/UTMStack/issues) for past instances of this issue
- [x] I have verified that my UTMStack version is up-to-date

### Describe the bug

When processing CEF logs with key-value pairs that contain spaces in the values (such as error messages), the KV parser incorrectly truncates the value at the first space character. For example, when parsing msg=Connection to the primary Administration Server has been interrupted., the parser only captures "Connection" as the value instead of the complete message.

### Regression Issue

- [ ] Select this option if this issue appears to be a regression.

### Expected Behavior

The KV parser should properly handle field values that contain spaces, capturing the complete value until either:
- The next key-value pair (delimited by space)
- The end of the message
- A properly escaped delimiter

### Current Behavior

When encountering a space within a field value, the parser stops reading and truncates the value at that point. Using the example log:
```
<67>Feb 25 14:19:59 dev-test-10-2 SyslogGen CEF:0|KasperskyLab|SecurityCenter|15.1.0.20748|KLSRV_EV_MASTER_SRV_DISCONNECTED|Connection to the primary Administration Server has been interrupted.|2|msg=Connection to the primary Administration Server has been interrupted. rt=1771952981000 cs9=Managed devices cs9Label=GroupName dhost=KSC-ISSPOL dst=127.0.0.1 cs2=1093 cs2Label=ProductName cs3=1.0.0.0 cs3Label=ProductVersion
```
The field msg=Connection to the primary Administration Server has been interrupted. gets parsed as:

- Current result: msg = Connection
- Expected result: msg = Connection to the primary Administration Server has been interrupted.





### Reproduction Steps

1. Configure a pipeline to process CEF logs using KV parsing
2. Ingest a CEF log that contains field values with spaces (like error messages)
3. Check the parsed fields in the processed log
4. Observe that fields with spaces are truncated at the first space

### Possible Solution

_No response_

### Additional Information/Context

_No response_

### UTMStack Version

11.2.3

### Operating System and version

Ubuntu

### Hypervisor and Version | Server Vendor and Model

n/a

### Browser and version

n/a

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

KV parser truncates values at first space when processing CEF logs with spaces in field values #1885

Acknowledgements

Describe the bug

Regression Issue

Expected Behavior

Current Behavior

Reproduction Steps

Possible Solution

Additional Information/Context

UTMStack Version

Operating System and version

Hypervisor and Version | Server Vendor and Model

Browser and version

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

KV parser truncates values at first space when processing CEF logs with spaces in field values #1885

Description

Acknowledgements

Describe the bug

Regression Issue

Expected Behavior

Current Behavior

Reproduction Steps

Possible Solution

Additional Information/Context

UTMStack Version

Operating System and version

Hypervisor and Version | Server Vendor and Model

Browser and version

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions