4 matches found
CVE-2026-33463
Operation on a Resource after Expiration or Termination CWE-672 in Kibana can lead to unauthorized information disclosure. A logic error in how expiration timestamps were validated allowed a time-bounded access token to remain usable beyond its intended validity window, enabling an unauthenticate...
CVE-2026-33463
creationtimestamp| type| source ---|---|--- 2026-05-28 21:15:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmwwx6jogd2h 2026-05-29 14:45:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmyrmbdqgh2a...
CVE-2026-33463
Operation on a Resource after Expiration or Termination CWE-672 in Kibana can lead to unauthorized information disclosure. A logic error in how expiration timestamps were validated allowed a time-bounded access token to remain usable beyond its intended validity window, enabling an unauthenticate...
CVE-2026-33463
The CVE-2026-33463 issue affects Kibana and is caused by a logic error in validating expiration timestamps, allowing time-bounded public file share tokens to remain usable after expiration and enabling an unauthenticated actor with the token to access content. Affected versions include Kibana 8.x...