|Category:||Web application abuses|
|Title:||Elastic Kibana < 6.8.10, 7.x < 7.7.1 XSS Vulnerability (Windows)|
|Summary:||Kibana is prone to a cross-site scripting vulnerability in the TSVB; visualization.|
Kibana is prone to a cross-site scripting vulnerability in the TSVB
An attacker who is able to edit or create a TSVB visualization could allow
the attacker to obtain sensitive information from, or perform destructive actions, on behalf of Kibana users
who edit the TSVB visualization.
Kibana prior to version 6.8.10 and 7.7.1.
Update to version 6.8.10, 7.7.1 or later.
Common Vulnerability Exposure (CVE) ID: CVE-2020-7015|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.