Description
Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.
Remediation
References
https://www.elastic.co/community/security
Related Vulnerabilities
CVE-2018-17192 Vulnerability in maven package org.apache.nifi:nifi-jetty-bundle
CVE-2016-0734 Vulnerability in maven package org.apache.activemq:activemq-web-console
CVE-2022-36895 Vulnerability in maven package com.compuware.jenkins:compuware-topaz-utilities
CVE-2023-33246 Vulnerability in maven package org.apache.rocketmq:rocketmq-controller
CVE-2022-25205 Vulnerability in maven package org.jenkins-ci.plugins:dbcharts