Vulnetix
Try Vulnetix Request Demo
CVE-2018-3830 PUBLISHED CVSS 6.099999904632568 MEDIUM

Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.

EPSS 0.71% · 72.2th percentile

Risk Scores

CVSS v3.1
6.099999904632568
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
0.71%
72.2th percentile

Affected Products

VendorProductVersions
redhatopenshift_container_platform3.11
elastickibana5.3.0
ElasticKibanaafter 5.3.0, before 5.6.12 and 6.4.1

Timeline

References

Open in Interactive Console →