Description

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

Remediation

References

https://www.elastic.co/community/security

Related Vulnerabilities

CVE-2023-33937 Vulnerability in maven package com.liferay:com.liferay.dynamic.data.mapping.form.web

CVE-2017-1000353 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2019-10433 Vulnerability in maven package com.ztbsuper:dingding-notifications

CVE-2016-8747 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core

CVE-2018-8027 Vulnerability in maven package org.apache.camel:camel-core

Severity

High

Classification

CWE-775 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Vendor Advisory