CVE-2025-25010

Опубликовано: 28 авг. 2025

Источник: debian

Описание

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
kibana	itp			package

Связанные уязвимости

CVE-2025-25010

CVSS3: 6.5

redhat

5 месяцев назад

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

CVE-2025-25010

CVSS3: 6.5

nvd

5 месяцев назад

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

GHSA-5567-c6hm-cgjh

CVSS3: 6.5

github

5 месяцев назад

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.