Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_113531HistoryJan 11, 2023 - 12:00 a.m.
Kibana 7.5.1 < 7.17.0 Cross-Site Scripting
2023-01-1100:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
kibana
cross-site scripting
vulnerability
scanner
0.001 Low
EPSS
Percentile
22.7%
According to its self-reported version number, the Kibana application running on the remote host is 7.5.1 prior to 7.17.0. It is, therefore, affected by :
- A Cross-Site Scripting in Kibana index patterns (CVE-2022-23707)
Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.
No source data| Vendor | Product | Version | CPE |
|---|---|---|---|
| elasticsearch | kibana | * | cpe:2.3:a:elasticsearch:kibana:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2022-23707
2022-02-11 18:15:11
nvd
nvd
CVE-2022-23707
2022-02-11 18:15:11
prion
prion
Cross site scripting
2022-02-11 18:15:00
osv
osv
CVE-2022-23707
2022-02-11 18:15:11
cvelist
cvelist
CVE-2022-23707
2022-02-11 17:40:27
redhatcve
redhatcve
CVE-2022-23707
2022-02-07 08:48:32
openvas
openvas
Elastic Kibana XSS Vulnerability (ESA-2022-01)
2022-02-09 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2022-02-14 09:03:08