CVE-2025-25012

Name of the Vulnerable Software and Affected Versions Elastic Kibana versions 8.15.0 through 8.17.2

Description A critical code execution vulnerability has been discovered in Elastic Kibana, allowing remote code execution. This issue affects versions 8.15.0 to 8.17.2, with specific roles being highly vulnerable. The vulnerability is related to prototype pollution within Kibana's file upload handler and HTTP request processing. With a high severity score, it poses a serious risk, giving authenticated attackers the ability to execute arbitrary code on systems where Kibana is implemented. The implications of this vulnerability range from unauthorized data access to full system compromise. It is estimated that over 379,900 services are potentially affected.

Recommendations To resolve the issue for Elastic Kibana versions 8.15.0 through 8.17.2, upgrade to version 8.17.3 as soon as possible. For versions where an immediate upgrade is not possible, add the parameter xpack.integration assistant.enabled: false to the Kibana configuration to mitigate the risk.