Security Advisory

CVE-2018-3821

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-03-30 20:00:00

Last updated 2024-08-05 04:57:23

Assigner elastic

State PUBLISHED

Description

Kibana versions after 5.1.1 and before 5.6.7 and 6.1.3 had a cross-site scripting (XSS) vulnerability in the tag cloud visualization that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.

← Browse all CVEs View on cve.org ↗