Bugzilla – Bug 1172567
VUL-1: CVE-2020-7015: kibana: stored XSS flaw in the TSVB visualization
Last modified: 2020-06-05 11:07:50 UTC
Kibana versions before 6.8.9 and 7.7.0 contains a stored XSS flaw in the TSVB
visualization. An attacker who is able to edit or create a TSVB visualization
could allow the attacker to obtain sensitive information from, or perform
destructive actions, on behalf of Kibana users who edit the TSVB visualization.
looks like TSVB or Time Series Visual Builder was only introduced with 5.4. We only ship older versons