Описание
Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an attacker can redirect the user to a potentially malicious site upon Kibana login.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift Container Platform 3.10 | search-guard-kibana-plugin | Not affected | ||
| Red Hat OpenShift Container Platform 3.11 | search-guard-kibana-plugin | Not affected | ||
| Red Hat OpenShift Container Platform 3.9 | search-guard-kibana-plugin | Not affected | ||
| Red Hat OpenShift Container Platform 4 | search-guard-kibana-plugin | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-79
https://bugzilla.redhat.com/show_bug.cgi?id=1747478search-guard-kibana-plugin: Malicious redirection upon login
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.1
nvd
больше 6 лет назад
Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an attacker can redirect the user to a potentially malicious site upon Kibana login.
CVSS3: 6.1
github
больше 3 лет назад
Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an attacker can redirect the user to a potentially malicious site upon Kibana login.
5.3 Medium
CVSS3