Логотип exploitDog
bind:CVE-2021-37936
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2021-37936
Поиск уязвимостей по источнику БДУ ФСТЭК

БДУ ФСТЭК

Поиск уязвимостей по источнику Microsoft MSRC

Microsoft MSRC

Поиск уязвимостей по источнику NVD

NVD

Поиск уязвимостей по источнику Oracle ELSA

Oracle ELSA

Поиск уязвимостей по источнику Red Hat CVE

Red Hat CVE

Поиск уязвимостей по источнику РЕД ОС

РЕД ОС

Поиск уязвимостей по источнику Rocky RLSA

Rocky RLSA

Поиск уязвимостей по источнику SUSE CVRF

SUSE CVRF

Поиск уязвимостей по источнику Ubuntu

Ubuntu

Поиск уязвимостей по источнику Debian

Debian

Поиск уязвимостей по источнику Github

Github

Количество 4

Количество 4

redhat логотип

CVE-2021-37936

около 3 лет назад

It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to an elasticsearch index could inject HTML. When the Discover app highlighted a search term containing the HTML, it would be rendered for the user.

CVSS3: 5.4
EPSS: Низкий
nvd логотип

CVE-2021-37936

около 3 лет назад

It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to an elasticsearch index could inject HTML. When the Discover app highlighted a search term containing the HTML, it would be rendered for the user.

CVSS3: 5.4
EPSS: Низкий
debian логотип

CVE-2021-37936

около 3 лет назад

It was discovered that Kibana was not sanitizing document fields conta ...

CVSS3: 5.4
EPSS: Низкий
github логотип

GHSA-p8x3-m7c8-mcj5

около 3 лет назад

It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to an elasticsearch index could inject HTML. When the Discover app highlighted a search term containing the HTML, it would be rendered for the user.

CVSS3: 5.4
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
redhat логотип
CVE-2021-37936

It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to an elasticsearch index could inject HTML. When the Discover app highlighted a search term containing the HTML, it would be rendered for the user.

CVSS3: 5.4
1%
Низкий
около 3 лет назад
nvd логотип
CVE-2021-37936

It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to an elasticsearch index could inject HTML. When the Discover app highlighted a search term containing the HTML, it would be rendered for the user.

CVSS3: 5.4
1%
Низкий
около 3 лет назад
debian логотип
CVE-2021-37936

It was discovered that Kibana was not sanitizing document fields conta ...

CVSS3: 5.4
1%
Низкий
около 3 лет назад
github логотип
GHSA-p8x3-m7c8-mcj5

It was discovered that Kibana was not sanitizing document fields containing HTML snippets. Using this vulnerability, an attacker with the ability to write documents to an elasticsearch index could inject HTML. When the Discover app highlighted a search term containing the HTML, it would be rendered for the user.

CVSS3: 5.4
1%
Низкий
около 3 лет назад

Уязвимостей на страницу