5 matches found
EUVD-2024-40290
Malicious code in bioql PyPI...
BIT-ELK-2024-43708
An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted payload to a number of inputs in Kibana UI. This can be carried out by users with read access to any feature in Kibana...
CVE-2024-43708
An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted payload to a number of inputs in Kibana UI. This can be carried out by users with read access to any feature in Kibana...
CVE-2024-43708
CVE-2024-43708 relates to Kibana: an unthrottled resource allocation can cause a crash when handling crafted requests to /api/metrics/snapshot and other UI inputs. Affected are Kibana 7.x prior to 7.17.23 or 8.x prior to 8.15.0 (per scan/OSV entries). The root cause is unbounded resource consumpt...
CVE-2024-52972 Kibana allocation of resources without limits or throttling leads to crash
An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/metrics/snapshot. This can be carried out by users with read access to the Observability Metrics or Logs features in Kibana...