Description
Kibana versions after and including 4.3 and before 4.6.2 are vulnerable to a cross-site scripting (XSS) attack.
Remediation
References
https://www.elastic.co/community/security
Related Vulnerabilities
CVE-2021-39233 Vulnerability in maven package org.apache.ozone:ozone-main
CVE-2018-20677 Vulnerability in maven package org.webjars:bootstrap-sass
CVE-2017-8452 Vulnerability in npm package kibana
CVE-2013-2165 Vulnerability in maven package org.richfaces:richfaces
CVE-2023-43668 Vulnerability in maven package org.apache.inlong:manager-pojo