CVE-2017-8452

Summary

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

Affected Software

VendorProductVersion RangeStatus
ElasticKibanabefore 5.2.1affected

Weaknesses

  • CWE-775: CWE-775: Missing Release of File Descriptor or Handle after Effective Lifetime

ADP Enrichment

CVE Program Container

Additional References

References