CVE-2020-7017 log
| Source |
|
| Severity | High |
| Remote | Yes |
| Type | Content spoofing |
| Description | In Kibana versions before 6.8.11 and 7.8.1 the region map visualization in contains a stored XSS flaw. An attacker who is able to edit or create a region map visualization could obtain sensitive information or perform destructive actions on behalf of Kibana users who view the region map visualization. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1210 | kibana | 7.8.0-1 | 7.9.1-1 | High | Fixed |
| References |
|---|
https://discuss.elastic.co/t/elastic-stack-6-8-11-and-7-8-1-security-update/242786 |