2 matches found
CVE-2017-11481
CVE-2017-11481 is an XSS vulnerability in Kibana triggered via URL fields in versions older than 6.0.1 and 5.6.5. The connected documents confirm Kibana was fixed (e.g., via patches and security updates) and note a Kibana-specific patch was applied (CVE-2017-11481.patch) as part of the Kibana upd...
Kibana 6.0.1 and 5.6.5 security update
Kibana cross site scripting issue ESA-2017-22 Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting XSS vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users. Affected Versions: A...