VYPR
Medium severity6.1NVD Advisory· Published Jun 16, 2017· Updated Jun 17, 2026

CVE-2016-10365

CVE-2016-10365

Description

Kibana versions before 4.6.3 and 5.0.1 have an open redirect vulnerability that would enable an attacker to craft a link in the Kibana domain that redirects to an arbitrary website.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Elastic/Kibana4 versions
    cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:*range: <=4.6.2
    • cpe:2.3:a:elastic:kibana:*:rc1:*:*:*:*:*:*range: <=5.0.0
    • (no CPE)range: <4.6.3, <5.0.1
    • (no CPE)range: before 5.0.1 and 4.6.3
  • Kibana/Kibanallm-fuzzy
    Range: <4.6.3, <5.0.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.