Vulnerabilities > Elastic > Kibana > 8.13.3

DATE CVE VULNERABILITY TITLE RISK
2024-08-13 CVE-2024-37287 Unspecified vulnerability in Elastic Kibana
A flaw allowing arbitrary code execution was discovered in Kibana.
network
low complexity
elastic
7.2
2024-06-19 CVE-2024-23443 Unspecified vulnerability in Elastic Kibana
A high-privileged user, allowed to create custom osquery packs 17 could affect the availability of Kibana by uploading a maliciously crafted osquery pack.
network
low complexity
elastic
4.9
2024-06-14 CVE-2024-23442 Open Redirect vulnerability in Elastic Kibana
An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL.
network
low complexity
elastic CWE-601
6.1
2024-06-13 CVE-2024-37279 Unspecified vulnerability in Elastic Kibana
A flaw was discovered in Kibana, allowing view-only users of alerting to use the run_soon API making the alerting rule run continuously, potentially affecting the system availability if the alerting rule is running complex queries.
network
low complexity
elastic
4.3