Bugzilla – Bug 1075536
VUL-0: CVE-2017-11479: kibana: XSS vulnerability in Timelion
Last modified: 2018-01-11 09:06:53 UTC
rh#1533359 / CVE-2017-11479
Kibana versions prior to 5.6.1 had a cross-site scripting (XSS) vulnerability in
Timelion that could allow an attacker to obtain sensitive information from or
perform destructive actions on behalf of other Kibana users.
Affected Versions: 5.0.0 to 5.6.0
Closing bug as not affecting SUSE products.