Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion. An attacker can construct a URL that when viewed by a Kibana user can lead to the Kibana process consuming large amounts of CPU and becoming unresponsive.
CVSS Information
N/A
Vulnerability Type
不正确的正则表达式
Vulnerability Title
Elasticsearch Kibana 资源管理错误漏洞
Vulnerability Description
Elasticsearch Kibana是荷兰Elasticsearch公司的一套开源的、基于浏览器的分析和搜索Elasticsearch仪表板工具。 Elasticsearch Kibana 6.8.11之前版本和7.8.1之前版本中存在安全漏洞。攻击者可借助特制URL利用该漏洞导致Kibana进程消耗大量CPU(拒绝服务)。
CVSS Information
N/A
Vulnerability Type
N/A