CVE-2017-8452 Vulnerability in npm package kibana

Description

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

Remediation

References

https://www.elastic.co/community/security

Related Vulnerabilities

CVE-2020-16024 Vulnerability in maven package org.webjars.npm:electron

CVE-2022-27260 Vulnerability in npm package buttercms

CVE-2019-17566 Vulnerability in maven package org.apache.xmlgraphics:batik-transcoder

CVE-2023-30846 Vulnerability in npm package typed-rest-client

CVE-2019-3894 Vulnerability in maven package org.wildfly:wildfly-ee

Severity

High

Classification

CWE-769 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H