In Kibana versions prior to 6.8.11 and 7.8.1 the region map visualization in contains a stored XSS flaw. An attacker who is able to edit or create a region map visualization could obtain sensitive information or perform destructive actions on behalf of Kibana users who view the region map visualization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
elasticsearch kibana |
||
oracle peoplesoft enterprise peopletools 8.58 |
||
oracle communications billing and revenue management 12.0.0.3.0 |
||
oracle communications cloud native core network function cloud native environment 1.7.0 |