CVE-2015-8131 in Elasticsearch Kibana
Summary
Cross-site request forgery (CSRF) vulnerability in Elasticsearch Kibana before 4.1.3 and 4.2.x before 4.2.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Reservation
11/13/2015
Disclosure
12/07/2015
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 79442 | Elasticsearch Kibana cross-site request forgery | 352 | Not defined | Official fix | CVE-2015-8131 |