CVE-2021-22139 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
A denial of service vulnerability was found in the Kibana webhook actions due to a lack of timeout or a limit on the request size. An attacker with permissions to create webhook actions could drain the Kibana host connection pool, making Kibana unavailable for all other users. The issue is fixed in Kibana version 7.12.1.
Group Package Affected Fixed Severity Status Ticket
AVG-1570 kibana 7.10.2-1 Medium Unknown FS#70038
References
https://discuss.elastic.co/t/7-12-1-security-update/271433