Unrated severityNVD Advisory· Published Nov 12, 2025· Updated Nov 12, 2025
Kibana Origin Validation Error
CVE-2025-37734
Description
Origin Validation Error in Kibana can lead to Server-Side Request Forgery via a forged Origin HTTP header processed by the Observability AI Assistant.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords5 versionspkg:apk/chainguard/kibana-8.17-bitnamipkg:apk/chainguard/kibana-8.18-bitnamipkg:apk/chainguard/kibana-8.19-bitnamipkg:bitnami/elkpkg:bitnami/kibana
< 8.17.10-r11+ 4 more
- (no CPE)range: < 8.17.10-r11
- (no CPE)range: < 8.18.8-r10
- (no CPE)range: < 8.19.11-r0
- (no CPE)range: >= 8.12.0, < 8.19.7
- (no CPE)range: >= 8.12.0, < 8.19.7
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.