Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2020/09/27 6:57 p.m.31 views

Security Bulletin: IBM Cloud Private is vulnerable to Kibana vulnerabilities (CVE-2020-7015, CVE-2020-7013, CVE-2020-7012)

Summary IBM Cloud Private is vulnerable to Kibana vulnerabilities Vulnerability Details CVEID: CVE-2020-7015 DESCRIPTION: Elastic Kibana is vulnerable to cross-site scripting, caused by improper validation of user-supplied input in TSVB visualization. A remote attacker could exploit this...

8.8CVSS1.4AI score0.18211EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessusadded 2020/06/22 12:0 a.m.41 views

Photon OS 2.0: Kibana PHSA-2020-2.0-0253

An update of the kibana package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0253. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid13771...

8.8CVSS7AI score0.18211EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2020/06/22 12:0 a.m.32 views

Photon OS 3.0: Kibana PHSA-2020-3.0-0103

An update of the kibana package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0103. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid137723;...

8.8CVSS7.8AI score0.18211EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2020/06/18 12:0 a.m.41 views

Photon OS 1.0: Kibana PHSA-2020-1.0-0301

An update of the kibana package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0301. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid13763...

8.8CVSS6.5AI score0.18211EPSS
Exploits2References5
CVE
CVEadded 2020/06/03 5:55 p.m.80 views

CVE-2020-7012

CVE-2020-7012 affects Elastic Kibana; proto­type pollution in the Upgrade Assistant allows an authenticated attacker with write access to the Kibana index to trigger arbitrary code execution with the Kibana process privileges. Affected versions include Kibana 6.7.0–6.8.8 and 7.0.0–7.6.2 (per mult...

8.8CVSS8.7AI score0.18211EPSS
Exploits1References1Affected Software1
Elastic
Elasticadded 2020/06/03 2:14 p.m.5 views

Elastic Stack 6.8.9 and 7.7.0 security update

Kibana upgrade assistant prototype pollution flaw ESA-2020-05 Kibana versions between 6.7.0 to 6.8.8 and 7.0.0 to 7.6.2 contain a prototype pollution flaw in the Upgrade Assistant. An authenticated attacker with privileges to write to the Kibana index could insert data that would cause Kibana to...

8.8CVSS8AI score0.18211EPSS
Exploits1
Rows per page
Query Builder