Kibana versions prior to 5.6.1 had a cross-site scripting (XSS) vulnerability in Timelion that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: elastic
Published: 2017-09-28T19:00:00
Updated: 2019-10-29T23:06:18
Reserved: 2017-07-20T00:00:00
Link: CVE-2017-11479
JSON object: View
NVD Information
Status : Modified
Published: 2017-09-29T01:34:48.530
Modified: 2020-08-14T17:30:42.060
Link: CVE-2017-11479
JSON object: View
Redhat Information
No data.
CWE