Rodrigo_Silva

**Name of the Vulnerable Software and Affected Versions** Kibana (affected versions not specified) **Description** An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Elasticsearch (affected versions not specified) **Description** A flaw was discovered in Elasticsearch, affecting the ` search` API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service. The vulnerability is related to reading data beyond the buffer boundaries in memory. Exploitation of the vulnerability may allow a remote attacker to cause a denial of service by sending a specially crafted API request. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.