Vulnerabilities > Elastic > Kibana > 8.6.3

DATE CVE VULNERABILITY TITLE RISK
2024-06-13 CVE-2024-37279 Unspecified vulnerability in Elastic Kibana
A flaw was discovered in Kibana, allowing view-only users of alerting to use the run_soon API making the alerting rule run continuously, potentially affecting the system availability if the alerting rule is running complex queries.
network
low complexity
elastic
4.3
2023-05-04 CVE-2023-31414 Code Injection vulnerability in Elastic Kibana
Kibana versions 8.0.0 through 8.7.0 contain an arbitrary code execution flaw.
network
low complexity
elastic CWE-94
8.8