CNNVD-202510-1069 Information

Oct 07, 2025 cve

CNNVD ID

CNNVD-202510-1069

CVE-2025-25009

  • CNNVD Published: 2025-10-07

Description (Chinese)

Elastic Kibana是Elastic公司的一个可用数据可视化仪表板软件。 Elastic Kibana存在安全漏洞,该漏洞源于网页生成期间输入中和不当,可能导致存储型跨站脚本攻击。

Description (English)

Elastic Kibana is a usable data visualization dashboard software for Elastic. Elastic Kibana had a security loophole, which stemmed from inappropriate input during web page generation and could lead to a storage-type cross-site script attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Elastic

Published

2025-10-07

Last Modified

2026-02-24

References

https://discuss.elastic.co/t/kibana-8-18-8-8-19-5-9-0-8-and-9-1-5-security-update-esa-2025-20/382449

Patch

https://www.elastic.co/kibana/

Share on: