CVE-2025-25010 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-25010 PUBLISHED CVSS 9.300000190734863 CRITICAL

Kibana privilege escalation via reporting_user role

EPSS 0.04% · 13.8th percentile

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

EPSS Score

0.04%

13.8th percentile

Affected Products

Vendor	Product	Versions
Bitnami	elk	9.0.0, 9.1.0, 9.0.0
Bitnami	kibana	9.1.0, 9.1.0, 9.0.0
Bitnami	elk	9.1.0, 9.0.0

Timeline

Aug 28, 2025 Coalition ESS Score
Aug 28, 2025 CVE Published
Aug 29, 2025 EPSS Score
Sep 1, 2025 Coalition ESS Score
Sep 1, 2025 PoC Published
Sep 5, 2025 EPSS Score
Sep 12, 2025 EPSS Score
Sep 20, 2025 EPSS Score
Sep 27, 2025 EPSS Score
Oct 1, 2025 Coalition ESS Score
Oct 4, 2025 EPSS Score
Oct 6, 2025 Coalition ESS Score

References

Open in Interactive Console →