0.001 Low
EPSS
Percentile
28.4%
Kibana is vulnerable to privilege bypass attacks. When X-Pack is installed, requests to the short URL and advanced settings services. This flaw allows authenticated users to make requests to those services regardless of their own permissions.
github.com/elastic/kibana/pull/9217
www.elastic.co/community/security