CVE-2022-38779
N/A
N/A
Summary
An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Elastic | kibana | Kibana Versions 7.0.0 through 7.17.8 and 8.0.0 through 8.6.1 | affected |
Weaknesses
- CWE-601: CWE-601
ADP Enrichment
CVE Program Container
Additional References
- https://www.elastic.co/community/security
- https://discuss.elastic.co/t/kibana-7-17-9-and-8-6-2-security-update/325782
References
- https://www.elastic.co/community/security
- https://discuss.elastic.co/t/kibana-7-17-9-and-8-6-2-security-update/325782
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.