Security Advisory

CVE-2018-3830

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-09-19 19:00:00

Last updated 2024-08-05 04:57:24

Assigner elastic

State PUBLISHED

Description

Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.

← Browse all CVEs View on cve.org ↗