View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2017-11479 severity moderate: SUSE including 1 source package names (kibana), 1 product×package rows across 1 product lines (SUSE OpenStack Cloud 7): Known Not Affected 1.
Kibana versions prior to 5.6.1 had a cross-site scripting (XSS) vulnerability in Timelion that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.