CVE-2017-8452

Опубликовано: 16 июн. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

Ссылки

https://www.elastic.co/community/security
Vendor Advisory
https://www.elastic.co/community/security
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*

Версия до 5.2.0 (включая)

EPSS

Процентиль: 59%

0.00381

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-775

CWE-769

Связанные уязвимости

CVE-2017-8452

CVSS3: 5.3

redhat

больше 8 лет назад

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

CVE-2017-8452

CVSS3: 7.5

debian

больше 8 лет назад

Kibana versions prior to 5.2.1 configured for SSL client access, file ...

GHSA-p36j-6ff2-h5mm

CVSS3: 7.5

github

больше 3 лет назад

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

EPSS

Процентиль: 59%

0.00381

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-775

CWE-769