Kibana 8.x < 8.19.16 DoS (ESA-2026-39)

The version of Kibana installed on the remote host is 8.x prior to 8.19.16. It is, therefore, affected by a vulnerability as referenced in the ESA-2026-39 advisory. - Uncontrolled Resource Consumption CWE-400 in Kibana can lead to denial of service via Excessive Allocation CAPEC-130. An...

Kibana 9.3.x < 9.3.3 SSRF (ESA-2026-40)

The version of Kibana installed on the remote host is 9.3.x prior to 9.3.3. It is, therefore, affected by a vulnerability as referenced in the ESA-2026-40 advisory. - Server-Side Request Forgery CWE-918 in Kibana can allow an authenticated user with connector management privileges to bypass the...

CVE-2026-38950

CVE-2026-38950 affects ESA AnomalyMatch prior to 1.3.1. The issue arises from loading model files from session directories with torch.load(), enabling unrestricted deserialization and arbitrary code execution. Affected component: model checkpoint loading in AnomalyMatch. Impact: potential full co...

PT-2026-45457

An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.load with unrestricted deserialization...

Kibana 8.x < 8.19.12 / 9.2.x < 9.2.6 / 9.3.x < 9.3.1 (ESA_2026_13)

The version of Kibana installed on the remote host is prior to 8.19.12, 9.2.6, or 9.3.1. It is, therefore, affected by a vulnerability as referenced in the ESA202613 advisory. - Improper Input Validation CWE-20 in the internal Content Connectors search endpoint in Kibana can lead Denial of Servic...

Kibana 7.x / 8.x < 8.19.10 / 9.1.x < 9.1.10 / 9.2.x < 9.2.4 (ESA_2026_08)

The version of Kibana installed on the remote host is prior to 8.19.10, 9.1.10, or 9.2.4. It is, therefore, affected by a vulnerability as referenced in the ESA202608 advisory. - An improper input validation vulnerability in Kibana's Email Connector can allow an attacker to cause an excessive...

Elasticsearch 7.0.x < 8.19.8 / 9.0.x < 9.1.8 / 9.2.x < 9.2.2 (ESA-2025-27)

The version of Elasticsearch installed on the remote host is 7.0 prior to 8.19.8, 9.0 prior to 9.1.8, or 9.2.0 prior to 9.2.2. It is, therefore, affected by a vulnerability as referenced in the ESA-2025-27 advisory. - Insertion of sensitive information in log file in Elasticsearch can lead to los...

Kibana 7.0.x < 8.19.8 / 9.0.x < 9.1.8 / 9.2.x < 9.2.2 XSS (ESA-2025-28)

The version of Kibana running on the remote host is prior to 7.0 prior to 8.19.8, 9.0 prior to 9.1.8 and 9.2 prior to 9.2.2. It is, therefore, affected by a cross-site scripting vulnerability as referenced in the ESA-2025-28 advisory. - Improper neutralization of input during web page generation...

MAL-2025-157295 Malicious code in kamasada-nuati-esa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21fd0f1fc4f987675131f1b87c7e4925dafc9f2348ef9a7aa56b77b8fac16d88 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Kibana 7.0.x <= 7.17.29 / 8.0.x <= 8.18.7 / 8.19.x <= 8.19.4 / 9.0.x <= 9.0.7 / 9.1.x <= 9.1.4 Multiple XSS (ESA-2025-17, ESA-2025-20)

The version of Kibana running on the remote host is prior to 7.0 prior to 7.17.29, 8.0 prior to 8.18.7, 8.19 prior to 8.19.4, 9.0 prior to 9.0.7 and 9.1 prior to 9.1.4. It is, therefore, affected by a cross-site scripting vulnerability as referenced in the ESA-2025-17, ESA-2025-20 advisory. -...

Kibana 7.0.x <= 7.17.29 / 8.0.x <= 8.18.7 / 8.19.x <= 8.19.3 / 9.0.x <= 9.0.6 / 9.1.x <= 9.1.3 XSS (ESA-2025-16)

The version of Kibana running on the remote host is prior to 7.0 prior to 7.17.29, 8.0 prior to 8.18.7, 8.19 prior to 8.19.3, 9.0 prior to 9.0.6 and 9.1 prior to 9.1.6. It is, therefore, affected by a cross-site scripting vulnerability as referenced in the ESA-2025-16 advisory. - Improper...

Elasticsearch 7.0.x <= 7.17.29 / 8.0.x < 8.18.8 / 8.19.x < 8.19.5 / 9.0.x < 9.0.8 / 9.1.x < 9.1.5 (ESA-2025-18)

The version of Elasticsearch installed on the remote host is prior to 8.18.8, 8.19.5, 9.0.8, or 9.1.5. It is, therefore, affected by a vulnerability as referenced in the ESA-2025-18 advisory. - Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality und...

EUVD-2007-2054

Malware in sbrugna...

EUVD-2014-4552

Malware in sbrugna...

Malicious code in @zalastax/nolb-esa (npm)

The package @zalastax/nolb-esa was found to contain malicious code...

MAL-2025-11288 Malicious code in @zalastax/nolb-esa (npm)

The package @zalastax/nolb-esa was found to contain malicious code...

CVE-2023-49488

A cross-site scripting XSS vulnerability in Openfiler ESA v2.99.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the nic parameter...

CISCO-SA-20190703-ESA

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:52+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666794652216265...

CISCO-SA-20190417-ESA

creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:42+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666793539871871...

CVE-2024-10659

CVE-2024-10659 affects ESAFENET CDG 5. The vulnerability lies in the delSystemEncryptPolicy function of /com/esafenet/servlet/document/CDGAuthoriseTempletService.java, where manipulation of the id argument enables SQL injection. The issue can be exploited remotely and, per the initial records, th...