Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_113526HistoryJan 11, 2023 - 12:00 a.m.
Kibana 7.11.0 < 7.12.1 Denial Of Service
2023-01-1100:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
kibana
7.11.0
7.12.1
denial of service
vulnerability
0.002 Low
EPSS
Percentile
54.9%
According to its self-reported version number, the Kibana application running on the remote host is 7.11.0 prior to 7.12.1. It is, therefore, affected by :
- An XML External Entity in the App Search web crawler beta feature (CVE-2021-22140)
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data| Vendor | Product | Version | CPE |
|---|---|---|---|
| elasticsearch | kibana | * | cpe:2.3:a:elasticsearch:kibana:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2021-22140
2021-05-13 18:15:09
cve
cve
CVE-2021-22140
2021-05-13 18:15:09
redhatcve
redhatcve
CVE-2021-22140
2021-04-29 23:50:57
cvelist
cvelist
CVE-2021-22140
2021-05-13 17:35:20
prion
prion
Xxe
2021-05-13 18:15:00
osv
osv
CVE-2021-22140
2021-05-13 18:15:09