Versions
Elastic KibanaA deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse…
Elastic KibanaKibana arbitrary code execution via prototype pollution
Elastic KibanaA high-privileged user, allowed to create custom osquery packs 17 could affect the availability of K…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaKibana Broken Access Control issue
Elastic KibanaKibana Insertion of Sensitive Information into Log File
Elastic KibanaKibana Insertion of Sensitive Information into Log File
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaKibana Insertion of Sensitive Information into Log File
Elastic KibanaAn open redirect issue was discovered in Kibana that could lead to a user being redirected to an arb…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaAn open redirect flaw was found in Kibana versions before 7.13.0 and 6.8.16. If a logged in user vis…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaA flaw was discovered in Kibana in which users with Read access to the Uptime feature could modify a…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaKibana versions before 7.12.1 contain a denial of service vulnerability was found in the webhook act…
Elastic KibanaIn Kibana versions before 7.12.0 and 6.8.15 a flaw in the session timeout was discovered where the x…
redhat/elasticsearch-operator-containerThe elasticsearch-operator does not validate the namespace where kibana logging resource is created …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift Container PlatformIt was discovered that kibana could be opened in an iframe, which made it possible to intercept and …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaKibana Arbitrary Code Execution
Elastic KibanaKibana versions 4.0 to 4.6, 5.0 to 5.6.12, and 6.0 to 6.4.2 contain an error in the way authorizatio…
Elastic KibanaKibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plug…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaThe fix in Kibana for ESA-2017-23 was incomplete. With X-Pack security enabled, Kibana versions befo…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Elastic KibanaThe Kibana fix for CVE-2017-8451 was found to be incomplete. With X-Pack installed, Kibana versions …
Elastic KibanaWith X-Pack installed, Kibana versions 5.0.0 and 5.0.1 were not properly authenticating requests to …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.