0.001 Low
EPSS
Percentile
34.4%
Kibana is vulnerable to open redirects from the login page. The fix for CVE-2017-11482 is incomplete allowing attackers to redirect users from the login page to other websites.
CVE-2017-11482
discuss.elastic.co/t/elastic-stack-6-1-3-and-5-6-7-security-update/117683
www.elastic.co/community/security