Sites

Kibana 8.15.1 Security Update (ESA-2024-27, ESA-2024-28)

2 2

Kibana arbitrary code execution via YAML deserialization in Amazon Bedrock Connector (ESA-2024-27) A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload. This issue only affects users that use Elastic...

#cve #elastic #vulnerability #kibana

on Sep 5