GHSA-5567-c6hm-cgjh

Опубликовано: 28 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

Ссылки

EPSS

Процентиль: 13%

0.00041

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2025-25010

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-25010

CVSS3: 6.5

redhat

4 месяца назад

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

CVE-2025-25010

CVSS3: 6.5

nvd

4 месяца назад

Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

CVE-2025-25010

CVSS3: 6.5

debian

4 месяца назад

Incorrect authorization in Kibana can lead to privilege escalation via ...

EPSS

Процентиль: 13%

0.00041

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2025-25010

Дефекты

CWE-863