Latest Vulnerabilities Affecting Elasticsearch Kibana

Date CVE Title CVSS
2018-12-20 CVE-2018-17246 Command Injection vulnerability in Elasticsearch and Redhat products High
2018-12-20 CVE-2018-17245 Credentials Management vulnerability in Elasticsearch Kibana Medium
2018-09-19 CVE-2018-3830 Cross-Site Scripting (XSS) vulnerability in Elasticsearch and Redhat products Medium
2018-03-30 CVE-2018-3818 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana Medium
2018-03-30 CVE-2018-3820 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana 6.1.1/6.1.2 Medium
2018-03-30 CVE-2018-3821 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana Medium
2018-03-30 CVE-2018-3819 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Elasticsearch Kibana Medium
2017-12-08 CVE-2017-11481 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana Medium
2017-12-08 CVE-2017-11482 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Elasticsearch Kibana Medium
2017-09-29 CVE-2017-11479 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana Medium
2017-06-30 CVE-2017-8443 Information Leak / Disclosure vulnerability in Elasticsearch Kibana 5.4.2 Medium
2017-06-16 CVE-2016-10365 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Elasticsearch Kibana 4.6.2/5.0.0 Medium
2017-06-16 CVE-2016-1000219 Improper Authorization vulnerability in Elasticsearch Kibana 4.1.0/4.5.0 Medium
2017-06-16 CVE-2016-10366 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana Medium
2017-06-16 CVE-2015-9056 Cross-Site Scripting (XSS) vulnerability in Elasticsearch Kibana 4.2.0 Medium