According to its self-reported version number, the Kibana application running on the remote host is 7.15.x prior to 7.17.1. It is, therefore, affected by :
Privilege Escalation when upgrading from version 6.x to 7.x would disable the in-built protections on the security index (CVE-2022-23708)
Cross-Site Scripting in the Data Preview Pane (CVE-2022-23710)
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data
Vendor | Product | Version | CPE |
---|---|---|---|
elasticsearch | kibana | * | cpe:2.3:a:elasticsearch:kibana:*:*:*:*:*:*:*:* |