Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/09/02 8:19 p.m.28 views

Security Bulletin: IBM Cloud Private is vulnerable to Elastic Kibana vulnerabilities (CVE-2020-7016,CVE-2020-7017 )

Summary IBM Cloud Private is vulnerable to Elastic Kibana vulnerabilities Vulnerability Details CVEID: CVE-2020-7016 DESCRIPTION: Elastic Kibana is vulnerable to a denial of service, caused by a vulnerability in Timelion. By persuading a victim to visit a specially crafted URL, a remote attacker...

6.7CVSS0.5AI score0.0122EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.35 views

Photon OS 1.0: Kibana PHSA-2020-1.0-0321

An update of the kibana package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0321. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid14163...

6.7CVSS6.5AI score0.0122EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.30 views

Photon OS 3.0: Kibana PHSA-2020-3.0-0135

An update of the kibana package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0135. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid140411;...

6.7CVSS6.5AI score0.0122EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/08/04 5:13 a.m.31 views

CVE-2020-7017

A stored Cross-site scripting XSS flaw was found in the region map visualization in kibana. This flaw allows an attacker who can edit or create a region map visualization to obtain sensitive information or perform destructive actions on behalf of kibana users who view the region map visualization...

4.6CVSS6.1AI score0.0122EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/08/03 12:0 a.m.22 views

Elastic Kibana < 6.8.11, 7.x < 7.8.1 Multiple Vulnerabilities - Linux

Kibana is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elastic:kibana"; ifdescription...

6.7CVSS7.2AI score0.0122EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/08/03 12:0 a.m.25 views

Elastic Kibana < 6.8.11, 7.x < 7.8.1 Multiple Vulnerabilities - Windows

Kibana is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elastic:kibana"; ifdescription...

6.7CVSS7.2AI score0.0122EPSS
Exploits0References1
CVE
CVE
added 2020/07/27 6:0 p.m.100 views

CVE-2020-7017

CVE-2020-7017 is a stored XSS in the Kibana region map visualization, affecting Kibana before 6.8.11 and 7.8.1. An attacker who can edit/create a region map could execute scripts in viewers’ browsers and potentially access or perform actions on behalf of Kibana users. Remediation in the public ad...

6.7CVSS6.1AI score0.0122EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder