Unrated severityNVD Advisory· Published May 13, 2021· Updated Aug 3, 2024
CVE-2021-22136
CVE-2021-22136
Description
In Kibana versions before 7.12.0 and 6.8.15 a flaw in the session timeout was discovered where the xpack.security.session.idleTimeout setting is not being respected. This was caused by background polling activities unintentionally extending authenticated users sessions, preventing a user session from timing out.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.