Lucene search
Redhat.comRH:CVE-2020-7015HistoryJun 19, 2020 - 3:55 p.m.
CVE-2020-7015
2020-06-1915:55:11
redhat.com
access.redhat.com
11
0.001 Low
EPSS
Percentile
22.7%
Kibana versions before 6.8.9 and 7.7.0 contains a stored XSS flaw in the TSVB visualization. An attacker who is able to edit or create a TSVB visualization could allow the attacker to obtain sensitive information from, or perform destructive actions, on behalf of Kibana users who edit the TSVB visualization.
Mitigation
To mitigate this vulnerability you can set "metrics.enabled: false" in kibana.yml
Related
nessus
nessus
Kibana < 7.7.1 Cross-Site Scripting
2023-01-11 00:00:00
Photon OS 2.0: Kibana PHSA-2020-2.0-0255
2020-06-29 00:00:00
Photon OS 3.0: Kibana PHSA-2020-3.0-0106
2020-06-25 00:00:00
cvelist
cvelist
CVE-2020-7015
2020-06-03 17:55:44
osv
osv
CVE-2020-7015
2020-06-03 18:15:23
nvd
nvd
CVE-2020-7015
2020-06-03 18:15:23
veracode
veracode
Cross-site Scripting (XSS)
2020-06-04 01:22:29
openvas
openvas
Elastic Kibana < 6.8.10, 7.x < 7.7.1 XSS Vulnerability - Windows
2020-06-08 00:00:00
Elastic Kibana < 6.8.10, 7.x < 7.7.1 XSS Vulnerability - Linux
2020-06-08 00:00:00
cve
cve
CVE-2020-7015
2020-06-03 18:15:23
prion
prion
Cross site scripting
2020-06-03 18:15:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0255
2020-06-26 00:00:00
Important Photon OS Security Update - PHSA-2020-0106
2020-06-25 00:00:00
Important Photon OS Security Update - PHSA-2020-0255
2020-06-26 00:00:00
ibm
ibm
redhat
redhat