Known vulnerabilities in Elastic Stack Kibana

Vendor: Elastic Stack
Website: https://www.elastic.co/
Total Security Bulletins: 67

Security bulletins (67)

Secuity bulletin Severity Status Published
SB2026070217: Input validation error in Kibana Low
Patched
02.07.2026
SB2026070216: Allocation of Resources Without Limits or Throttling in Kibana Low
Patched
02.07.2026
SB2026070215: Inclusion of Sensitive Information in Log Files in Kibana Low
Patched
02.07.2026
SB2026070214: Authorization bypass through user-controlled key in Kibana Low
Patched
02.07.2026
SB2026070213: Improper Output Neutralization for Logs in Kibana Medium
Patched
02.07.2026
SB2026052934: Server-Side Request Forgery (SSRF) in Kibana Low
Patched
29.05.2026
SB2026052933: Multiple vulnerabilities in Kibana Medium
Patched
29.05.2026
SB2026040923: Multiple vulnerabilities in Kibana Medium
Patched
09.04.2026
SB2026031962: Denial of service in Kibana Medium
Patched
19.03.2026
SB2026031961: Missing authorization in Kibana Low
Patched
19.03.2026
SB2026022720: Multiple vulnerabilities in Elastic Kibana Medium
Patched
27.02.2026
SB2026022719: Two vulnerabilities in Elastic Kibana Medium
Patched
27.02.2026
SB20260113103: Multiple vulnerabilities in Elastic Kibana High
Patched
13.01.2026
SB2025121929: Multiple vulnerabilities in Kibana Medium
Patched
19.12.2025
SB2025121525: Multiple vulnerabilities in Kibana Low
Patched
15.12.2025
SB2025111256: Multiple vulnerabilities in Kibana Medium
Patched
12.11.2025
SB2025100655: Multiple vulnerabilities in Kibana Medium
Patched
06.10.2025
SB2025100654: Reflected XSS in Kibana Low
Patched
06.10.2025
SB2025083006: Incorrect authorization in Elastic Kibana Medium
Patched
30.08.2025
SB2025062470: Kibana update for Google Chromium High
Patched Public exploit
24.06.2025


Showing elements 1 - 20 out of 67