Description
In Kibana versions before 6.8.11 and 7.8.1 the region map visualization in contains a stored XSS flaw. An attacker who is able to edit or create a region map visualization could obtain sensitive information or perform destructive actions on behalf of Kibana users who view the region map visualization.
Published: 2020-07-27
Score: 6.7 Medium
EPSS: 1.2% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2020-28154 In Kibana versions before 6.8.11 and 7.8.1 the region map visualization in contains a stored XSS flaw. An attacker who is able to edit or create a region map visualization could obtain sensitive information or perform destructive actions on behalf of Kibana users who view the region map visualization.
History

No history.

Subscriptions

Elasticsearch Kibana
Oracle Communications Billing And Revenue Management Communications Cloud Native Core Network Function Cloud Native Environment Peoplesoft Enterprise Peopletools
cve-icon MITRE

Status: PUBLISHED

Assigner: elastic

Published:

Updated: 2024-08-04T09:18:02.514Z

Reserved: 2020-01-14T00:00:00.000Z

Link: CVE-2020-7017

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-07-27T18:15:14.233

Modified: 2024-11-21T05:36:30.080

Link: CVE-2020-7017

cve-icon Redhat

Severity : Moderate

Publid Date: 2020-07-27T00:00:00Z

Links: CVE-2020-7017 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses