CNNVD-202510-1474 Information
Oct 10, 2025
cve
CNNVD ID
CNNVD-202510-1474
Related CVE
- CNNVD Published: 2025-10-10
Description (Chinese)
Elastic Kibana是Elastic公司的一个可用数据可视化仪表板软件。 Elastic Kibana存在安全漏洞,该漏洞源于网页生成期间输入中和不当,可能导致存储型跨站脚本。
Description (English)
Elastic Kibana is a usable data visualization dashboard software for Elastic. Elastic Kibana has a security loophole, which stems from the inaccuracy of input during the web page generation and may lead to storage-type cross-site scripts.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Elastic
Published
2025-10-10
Last Modified
2026-02-24
References
https://discuss.elastic.co/t/kibana-8-18-8-8-19-5-9-0-8-9-1-5-security-update-esa-2025-17/382451
Patch
https://www.elastic.co/downloads/kibana
Share on: