What the vulnerability does

01Description

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes.

Key dates

02Disclosure timeline

June 16, 2017 CVE published
August 5, 2024 Record updated