VYPR

Vendor CVEs

Elastic

All CVEs

258 total · sorted by risk
  • CVE-2026-0528Jan 13, 2026
    risk 0.00cvss epss 0.00

    Improper Validation of Array Index (CWE-129) exists in Metricbeat can allow an attacker to cause a Denial of Service through Input Data Manipulation (CAPEC-153) via specially crafted, malformed payloads sent to the Graphite server metricset or Zookeeper server metricset.…

  • CVE-2025-68422Dec 18, 2025
    risk 0.00cvss epss 0.00

    Improper Authorization (CWE-285) in Kibana can lead to privilege escalation (CAPEC-233) by allowing an authenticated user to bypass intended permission restrictions via a crafted HTTP request. This allows an attacker who lacks the live queries - read permission to successfully…

  • CVE-2025-68386Dec 18, 2025
    risk 0.00cvss epss 0.00

    Improper Authorization (CWE-285) in Kibana can lead to privilege escalation (CAPEC-233) by allowing an authenticated user to change a document's sharing type to "global," even though they do not have permission to do so, making it visible to everyone in the space via a crafted a…

  • CVE-2025-68390Dec 18, 2025
    risk 0.00cvss epss 0.00

    Allocation of Resources Without Limits or Throttling (CWE-770) in Elasticsearch can allow an authenticated user with snapshot restore privileges to cause Excessive Allocation (CAPEC-130) of memory and a denial of service (DoS) via crafted HTTP request.

  • CVE-2025-68389Dec 18, 2025
    risk 0.00cvss epss 0.00

    Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana can allow a low-privileged authenticated user to cause Excessive Allocation (CAPEC-130) of computing resources and a denial of service (DoS) of the Kibana process via a crafted HTTP request.

  • CVE-2025-68387Dec 18, 2025
    risk 0.00cvss epss 0.00

    Improper neutralization of input during web page generation ('Cross-site Scripting') (CWE-79) allows an unauthenticated user to embed a malicious script in content that will be served to web browsers causing cross-site scripting (XSS) (CAPEC-63) via a vulnerability a function…

  • CVE-2025-68385Dec 18, 2025
    risk 0.00cvss epss 0.00

    Improper neutralization of input during web page generation ('Cross-site Scripting') (CWE-79) allows an authenticated user to embed a malicious script in content that will be served to web browsers causing cross-site scripting (XSS) (CAPEC-63) via a method in Vega bypassing a…

  • CVE-2025-68384Dec 18, 2025
    risk 0.00cvss epss 0.00

    Allocation of Resources Without Limits or Throttling (CWE-770) in Elasticsearch can allow a low-privileged authenticated user to cause Excessive Allocation (CAPEC-130) causing a persistent denial of service (OOM crash) via submission of oversized user settings data.

  • CVE-2025-68383Dec 18, 2025
    risk 0.00cvss epss 0.00

    Improper Validation of Specified Index, Position, or Offset in Input (CWE-1285) in Filebeat Syslog parser and the Libbeat Dissect processor can allow a user to trigger a Buffer Overflow (CAPEC-100) and cause a denial of service (panic/crash) of the Filebeat process via either a…

  • CVE-2025-68382Dec 18, 2025
    risk 0.00cvss epss 0.00

    Out-of-bounds read (CWE-125) allows an unauthenticated remote attacker to perform a buffer overflow (CAPEC-100) via the NFS protocol dissector, leading to a denial-of-service (DoS) through a reliable process crash when handling truncated XDR-encoded RPC messages.

  • CVE-2025-68381Dec 18, 2025
    risk 0.00cvss epss 0.00

    Improper Bounds Check (CWE-787) in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow (CAPEC-100) and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number.

  • CVE-2025-68388Dec 18, 2025
    risk 0.00cvss epss 0.00

    Allocation of resources without limits or throttling (CWE-770) allows an unauthenticated remote attacker to cause excessive allocation (CAPEC-130) of memory and CPU via the integration of malicious IPv4 fragments, leading to a degradation in Packetbeat.

  • CVE-2025-37731Dec 15, 2025
    risk 0.00cvss epss 0.00

    Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially crafted client certificates. A malicious actor would need to have such a crafted client certificate signed by a legitimate, trusted Certificate Authority.

  • CVE-2025-37732Dec 15, 2025
    risk 0.00cvss epss 0.00

    Improper neutralization of input during web page generation ('Cross-site Scripting') (CWE-79) allows an authenticated user to render HTML tags within a user’s browser via the integration package upload functionality. This issue is related to ESA-2025-17 (CVE-2025-25018)…

  • CVE-2025-37734Nov 12, 2025
    risk 0.00cvss epss 0.00

    Origin Validation Error in Kibana can lead to Server-Side Request Forgery via a forged Origin HTTP header processed by the Observability AI Assistant.

  • CVE-2025-37736Nov 7, 2025
    risk 0.00cvss epss 0.00

    Improper Authorization in Elastic Cloud Enterprise can lead to Privilege Escalation where the built-in readonly user can call APIs that should not be allowed. The list of APIs that are affected by this issue is: post:/platform/configuration/security/service-accounts…

  • CVE-2025-37729Oct 13, 2025
    risk 0.00cvss epss 0.01

    Improper neutralization of special elements used in a template engine in Elastic Cloud Enterprise (ECE) can lead to a malicious actor with Admin access exfiltrating sensitive information and issuing commands via a specially crafted string where Jinjava variables are evaluated.

  • CVE-2025-37727Oct 10, 2025
    risk 0.00cvss epss 0.00

    Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex

  • CVE-2025-25017Oct 10, 2025
    risk 0.00cvss epss 0.00

    Improper Neutralization of Input During Web Page Generation in Kibana can lead to Cross-Site Scripting (XSS)

  • CVE-2025-25018Oct 10, 2025
    risk 0.00cvss epss 0.00

    Improper Neutralization of Input During Web Page Generation in Kibana can lead to stored Cross-Site Scripting (XSS)

  • CVE-2025-25009Oct 7, 2025
    risk 0.00cvss epss 0.00

    Improper Neutralization of Input During Web Page Generation in Kibana can lead to Stored XSS via case file upload.

  • CVE-2025-25010Aug 28, 2025
    risk 0.00cvss epss 0.00

    Incorrect authorization in Kibana can lead to privilege escalation via the built-in reporting_user role which incorrectly has the ability to access all Kibana Spaces.

  • CVE-2025-25012Jun 25, 2025
    risk 0.00cvss epss 0.00

    URL redirection to an untrusted site ('Open Redirect') in Kibana can lead to sending a user to an arbitrary site and server-side request forgery via a specially crafted URL.

  • CVE-2024-43706Jun 10, 2025
    risk 0.00cvss epss 0.00

    Improper authorization in Kibana can lead to privilege abuse via a direct HTTP request to a Synthetic monitor endpoint.

  • CVE-2025-25014May 6, 2025
    risk 0.00cvss epss 0.14

    A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.

  • CVE-2024-52979May 1, 2025
    risk 0.00cvss epss 0.01

    Uncontrolled Resource Consumption in Elasticsearch while evaluating specifically crafted search templates with Mustache functions can lead to Denial of Service by causing the Elasticsearch node to crash.

  • CVE-2024-11390May 1, 2025
    risk 0.00cvss epss 0.00

    Unrestricted upload of a file with dangerous type in Kibana can lead to arbitrary JavaScript execution in a victim’s browser (XSS) via crafted HTML and JavaScript files. The attacker must have access to the Synthetics app AND/OR have access to write to the synthetics indices.

  • CVE-2025-25016May 1, 2025
    risk 0.00cvss epss 0.00

    Unrestricted file upload in Kibana allows an authenticated attacker to compromise software integrity by uploading a crafted malicious file due to insufficient server-side validation.

  • CVE-2024-52976May 1, 2025
    risk 0.00cvss epss 0.00

    Inclusion of functionality from an untrusted control sphere in Elastic Agent subprocess, osqueryd, allows local attackers to execute arbitrary code via parameter injection. An attacker requires local access and the ability to modify osqueryd configurations.

  • CVE-2023-46669May 1, 2025
    risk 0.00cvss epss 0.00

    Exposure of sensitive information to local unauthorized actors in Elastic Agent and Elastic Security Endpoint can lead to loss of confidentiality and impersonation of Endpoint to the Elastic Stack. This issue was identified by Elastic engineers and Elastic has no indication that…

  • CVE-2024-12556Apr 8, 2025
    risk 0.00cvss epss 0.00

    Prototype Pollution in Kibana can lead to code injection via unrestricted file upload combined with path traversal.

  • CVE-2024-52981Apr 8, 2025
    risk 0.00cvss epss 0.01

    An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow.

  • CVE-2024-52974Apr 8, 2025
    risk 0.00cvss epss 0.00

    An issue has been identified where a specially crafted request sent to an Observability API could cause the kibana server to crash. A successful attack requires a malicious user to have read permissions for Observability assigned to them.

  • CVE-2024-52980Apr 8, 2025
    risk 0.00cvss epss 0.00

    A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cause the Elasticsearch node to crash. A successful attack requires a malicious user to have read_pipeline Elasticsearch cluster…

  • CVE-2025-25015Mar 5, 2025
    risk 0.00cvss epss 0.01

    Prototype pollution in Kibana leads to arbitrary code execution via a crafted file upload and specifically crafted HTTP requests. In Kibana versions >= 8.15.0 and < 8.17.1, this is exploitable by users with the Viewer role. In Kibana versions 8.17.1 and 8.17.2 , this is only…

  • CVE-2024-43708Jan 23, 2025
    risk 0.00cvss epss 0.00

    An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted payload to a number of inputs in Kibana UI. This can be carried out by users with read access to any feature in Kibana.

  • CVE-2024-52972Jan 23, 2025
    risk 0.00cvss epss 0.00

    An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/metrics/snapshot. This can be carried out by users with read access to the Observability Metrics or Logs features in Kibana.

  • CVE-2024-43707Jan 23, 2025
    risk 0.00cvss epss 0.00

    An issue was identified in Kibana where a user without access to Fleet can view Elastic Agent policies that could contain sensitive information. The nature of the sensitive information depends on the integrations enabled for the Elastic Agent and their respective versions.

  • CVE-2024-43710Jan 23, 2025
    risk 0.00cvss epss 0.00

    A server side request forgery vulnerability was identified in Kibana where the /api/fleet/health_check API could be used to send requests to internal endpoints. Due to the nature of the underlying request, only endpoints available over https that return JSON could be accessed.…

  • CVE-2024-52973Jan 21, 2025
    risk 0.00cvss epss 0.00

    An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a specially crafted request to /api/log_entries/summary. This can be carried out by users with read access to the Observability-Logs feature in Kibana.

  • CVE-2024-43709Jan 21, 2025
    risk 0.00cvss epss 0.01

    An allocation of resources without limits or throttling in Elasticsearch can lead to an OutOfMemoryError exception resulting in a crash via a specially crafted query using an SQL function.

  • CVE-2024-12539Dec 17, 2024
    risk 0.00cvss epss 0.00

    An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow.

  • CVE-2024-37285Nov 14, 2024
    risk 0.00cvss epss 0.01

    A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload. A successful attack requires a malicious user to have a combination of both specific Elasticsearch indices privileges…

  • CVE-2024-37288Sep 9, 2024
    risk 0.00cvss epss 0.01

    A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload. This issue only affects users that use Elastic Security’s built-in AI tools https://www.elastic.co/guide/en/security/current/ai-fo…

  • CVE-2024-37287Aug 13, 2024
    risk 0.00cvss epss 0.02

    A flaw allowing arbitrary code execution was discovered in Kibana. An attacker with access to ML and Alerting connector features, as well as write access to internal ML indices can trigger a prototype pollution vulnerability, ultimately leading to arbitrary code execution.

  • CVE-2024-37283Aug 8, 2024
    risk 0.00cvss epss 0.01

    An issue was discovered whereby Elastic Agent will leak secrets from the agent policy elastic-agent.yml only when the log level is configured to debug. By default the log level is set to info, where no leak occurs.

  • CVE-2024-37286Aug 3, 2024
    risk 0.00cvss epss 0.00

    APM server logs contain document body from a partially failed bulk index request. For example, in case of unavailable_shards_exception for a specific document, since the ES response line contains the document body, and that APM server logs the ES response line on error, the…

  • CVE-2024-23444Jul 31, 2024
    risk 0.00cvss epss 0.00

    It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed…

  • CVE-2024-37281Jul 30, 2024
    risk 0.00cvss epss 0.00

    An issue was discovered in Kibana where a user with Viewer role could cause a Kibana instance to crash by sending a large number of maliciously crafted requests to a specific endpoint.

  • CVE-2023-49921Jul 26, 2024
    risk 0.00cvss epss 0.00

    An issue was discovered by Elastic whereby Watcher search input logged the search query results on DEBUG log level. This could lead to raw contents of documents stored in Elasticsearch to be printed in logs. Elastic has released 8.11.2 and 7.17.16 that resolves this issue by…

Page 3 of 6