Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:5 p.m.28 views

Security Bulletin:IBM Security Guardium Big Data Intelligence (SonarG) is vulnerable to using Components with Known Vulnerabilities (CVE-2016-1000220, CVE-2017-11479)

Summary IBM Security Guardium Big Data Intelligence SonarG has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2017-11479 DESCRIPTION: Elastic Kibana is vulnerable to cross-site scripting, caused by improper validation of user-supplied input in Timelion. A remote attacke...

6.1CVSS0.6AI score0.0115EPSS
Exploits0Affected Software1
NVD
NVD
added 2017/06/16 9:29 p.m.25 views

CVE-2016-1000220

Kibana before 4.5.4 and 4.1.11 are vulnerable to an XSS attack that would allow an attacker to execute arbitrary JavaScript in users' browsers...

6.1CVSS6.2AI score0.0115EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/06/16 9:0 p.m.36 views

CVE-2016-1000220

Kibana before 4.5.4 and 4.1.11 are vulnerable to an XSS attack that would allow an attacker to execute arbitrary JavaScript in users' browsers...

6.5AI score0.0115EPSS
Exploits0References2
CVE
CVE
added 2017/06/16 9:0 p.m.65 views

CVE-2016-1000220

Elastic Kibana prior to 4.5.4 and 4.1.11 is vulnerable to cross-site scripting (XSS) due to improper validation of user-supplied input. A remote attacker could exploit this by delivering a specially crafted URL to execute arbitrary JavaScript in a victim’s browser, potentially stealing cookies or...

6.1CVSS6.3AI score0.0115EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2016/09/09 4:48 p.m.29 views

CVE-2016-1000220

A cross-site scripting XSS flaw was found in Kibana. A remote attacker could use this flaw to inject arbitrary web script into pages served to other users...

6.1CVSS5.8AI score0.0115EPSS
Exploits0References2
Rows per page
Query Builder