kibana is vulnerable to information disclosure. A remote unauthenticated attacker is able to gain access to unauthorized information via the Elastic Stack monitoring
component in the kibana page source. The vulnerability only impacts the users that have set any of the optional monitoring.ui.elasticsearch.*
settings in order to configure kibana as a remote UI for elastic stack monitoring.