Medium severity6.1NVD Advisory· Published Sep 19, 2018· Updated Jun 17, 2026
CVE-2018-3830
CVE-2018-3830
Description
Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2018:3537nvdThird Party Advisory
- discuss.elastic.co/t/elastic-stack-6-4-1-and-5-6-12-security-update/149035nvdRelease NotesVendor Advisory
- www.elastic.co/community/securitynvdVendor Advisory
News mentions
0No linked articles in our index yet.