What the vulnerability does

01Description

Kibana versions before 6.8.11 and 7.8.1 contain a denial of service (DoS) flaw in Timelion. An attacker can construct a URL that when viewed by a Kibana user can lead to the Kibana process consuming large amounts of CPU and becoming unresponsive.

Key dates

02Disclosure timeline

July 27, 2020 CVE published
August 4, 2024 Record updated