Elastic Kibana X-Pack 'CVE-2017-8443' Information Disclosure Vulnerability - Linux

Elastic Kibana with X-Pack is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Elastic Kibana X-Pack 'CVE-2017-8443' Information Disclosure Vulnerability - Windows

Elastic Kibana with X-Pack is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2017-8443

CVE-2017-8443 affects Elastic Kibana X-Pack security prior to 5.4.3. A crafted Kibana URL can redirect to an improperly initialized login screen, causing credentials entered there to appear in the URL bar and potentially be viewed by others or logged. Remediation: upgrade to Kibana X-Pack 5.4.3 o...

Elastic Stack 5.4.3 Security update

Kibana X-Pack Security user credentials disclosure ESA-2017-11 In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the result could be a redirect to an improperly initialized Kibana login screen. If the user enters credentials on this screen, the...