CNNVD-202510-1475 Information
Oct 10, 2025
cve
CNNVD ID
CNNVD-202510-1475
Related CVE
- CNNVD Published: 2025-10-10
Description (Chinese)
Elastic Kibana是Elastic公司的一个可用数据可视化仪表板软件。 Elastic Kibana存在安全漏洞,该漏洞源于Web页面生成期间输入中和不当,可能导致跨站脚本攻击。
Description (English)
Elastic Kibana is a usable data visualization dashboard software for Elastic. Elastic Kibana has a security loophole, which originates from the inertity of input during the web page generation and may lead to cross-site script attacks.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Elastic
Published
2025-10-10
Last Modified
2026-02-24
References
https://discuss.elastic.co/t/kibana-8-18-8-8-19-4-9-0-7-9-1-4-security-update-esa-2025-16/382450
Patch
https://www.elastic.co/downloads/kibana
Share on: