kibana is vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization of the index pattern allowing an attacker to inject maliciously crafted script via the index pattern.
CPE | Name | Operator | Version |
---|---|---|---|
kibana | le | 7.16.3 | |
@elastic/elasticsearch | le | 7.16.0 | |
kibana | le | 7.16.3 | |
@elastic/elasticsearch | le | 7.16.0 |