Описание
Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift Container Platform 3.10 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.2 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.3 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.4 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.5 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.6 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.7 | kibana | Not affected | ||
| Red Hat OpenShift Container Platform 3.9 | kibana | Not affected | ||
| Red Hat OpenShift Enterprise 3.0 | kibana | Not affected | ||
| Red Hat OpenStack Platform 8 (Liberty) Operational Tools | kibana | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
8 High
CVSS3
Связанные уязвимости
Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulner ...
Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
EPSS
8 High
CVSS3