CVE-2025-25014

Publication date

2025-05-06 17:30:45

Family

elastic

State

PUBLISHED

Description

A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.