Description
Cross-site request forgery (CSRF) vulnerability in Elasticsearch Kibana before 4.1.3 and 4.2.x before 4.2.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Remediation
References
https://www.elastic.co/community/security/
http://www.securityfocus.com/archive/1/536935/100/0/threaded
Related Vulnerabilities
CVE-2020-10714 Vulnerability in maven package org.wildfly.security:wildfly-elytron
CVE-2019-7619 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2012-4431 Vulnerability in maven package org.apache.tomcat:tomcat-catalina
CVE-2020-16024 Vulnerability in npm package electron
CVE-2011-2092 Vulnerability in maven package com.adobe.blazeds:blazeds-common