According to its self-reported version number, the Kibana application running on the remote host is prior to 7.8.1. It is, therefore, affected by :
A Regular Expression Denial Of Service flaw in Timelion (CVE-2020-7016)
A Cross-Site Scripting in region map visualization (CVE-2020-7017)
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data
Vendor | Product | Version | CPE |
---|---|---|---|
elasticsearch | kibana | * | cpe:2.3:a:elasticsearch:kibana:*:*:*:*:*:*:*:* |