CVE-2016-10365

Summary

Kibana versions before 4.6.3 and 5.0.1 have an open redirect vulnerability that would enable an attacker to craft a link in the Kibana domain that redirects to an arbitrary website.

Affected Software

VendorProductVersion RangeStatus
ElasticKibanabefore 5.0.1 and 4.6.3affected

Weaknesses

  • CWE-601: CWE-601: URL Redirection to Untrusted Site

ADP Enrichment

CVE Program Container

Additional References

References