5 matches found
SUSE CVE-2016-10364
With X-Pack installed, Kibana versions 5.0.0 and 5.0.1 were not properly authenticating requests to advanced settings and the short URL service, any authenticated user could make requests to those services regardless of their own permissions...
Elastic Kibana X-Pack 'CVE-2016-10364' Insufficient Access Restriction Vulnerability - Linux
Elastic Kibana with X-Pack is prone to an insufficient access restriction vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Elastic Kibana X-Pack 'CVE-2016-10364' Insufficient Access Restriction Vulnerability - Windows
Elastic Kibana with X-Pack is prone to an insufficient access restriction vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2016-10364
With X-Pack installed, Kibana versions 5.0.0 and 5.0.1 were not properly authenticating requests to advanced settings and the short URL service, any authenticated user could make requests to those services regardless of their own permissions...
CVE-2016-10364
CVE-2016-10364 affects Elastic Kibana with X-Pack. The vulnerability is described as an improper authentication/insufficient access restriction in Kibana 5.0.0 and 5.0.1, where any authenticated user could issue requests to the advanced settings and short URL services regardless of permissions. T...