Description
Kibana versions after and including 4.3 and before 4.6.2 are vulnerable to a cross-site scripting (XSS) attack.
Remediation
References
https://www.elastic.co/community/security
Related Vulnerabilities
CVE-2021-46361 Vulnerability in maven package info.magnolia:magnolia-core
CVE-2020-16014 Vulnerability in npm package electron
CVE-2023-26049 Vulnerability in maven package org.eclipse.jetty:jetty-server
CVE-2020-8203 Vulnerability in maven package org.webjars.npm:lodash
CVE-2020-2208 Vulnerability in maven package org.jenkins-ci.plugins:slack-uploader