CVE-2020-7017

CVSS v3.1

6.7

Medium

Vector

AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions Kibana versions prior to 6.8.11 Kibana versions prior to 7.8.1

Description The region map visualization in Kibana contains a stored XSS flaw. An attacker who can edit or create a region map visualization could obtain sensitive information or perform destructive actions on behalf of Kibana users who view the region map visualization.

Recommendations For versions prior to 6.8.11, update to version 6.8.11 or later. For versions prior to 7.8.1, update to version 7.8.1 or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

BIT-ELK-2020-7017

BIT-KIBANA-2020-7017

CVE-2020-7017

Affected Products

Kibana

CVE-2020-7017

Weakness Enumeration

Related Identifiers

Affected Products

References · 7