suse · CVE-2017-11479

Quick triage

Priority: medium Published: 2021-05-30 13:59:01 UTC Updated: 2022-09-18 00:46:23 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-11479 severity moderate: SUSE including 1 source package names (kibana), 1 product×package rows across 1 product lines (SUSE OpenStack Cloud 7): Known Not Affected 1.

Description:

Kibana versions prior to 5.6.1 had a cross-site scripting (XSS) vulnerability in Timelion that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.

cvelogic Threat Intelligence