Homepage

kibana-9.4

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the kibana-9.4 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2026-44645

*
  • L
CVE-2026-44646

*
  • L
CVE-2026-44489

*
  • L
CVE-2026-44492

*
  • L
CVE-2026-44490

*
  • L
CVE-2026-45617

*
  • L
CVE-2026-45618

*
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

*
  • L
CVE-2026-44494

*
  • H
Resource Exhaustion

*
  • L
CVE-2026-33464

<9.4.2-r0
  • L
CVE-2026-49095

<9.4.2-r0
  • L
CVE-2026-42400

<9.4.2-r0
  • H
Uncontrolled Recursion

<9.4.2-r0
  • L
CVE-2026-44974

<9.4.2-r0
  • L
CVE-2026-8723

<9.4.2-r0
  • H
Use of Uninitialized Resource

<9.4.2-r0
  • L
CVE-2026-44979

<9.4.2-r0
  • L
Improper Handling of Exceptional Conditions

*
  • L
OS Command Injection

*
  • L
Arbitrary Code Injection

<9.4.2-r0
  • L
CVE-2026-6322

*
  • L
CVE-2026-6321

*
  • L
Improper Validation of Specified Quantity in Input

<9.4.2-r0
  • L
XML Injection

*
  • L
XML Injection

*
  • L
Deserialization of Untrusted Data

<9.4.2-r0
  • L
Information Exposure Through Caching

<9.4.2-r0
  • L
XML Injection

*
  • L
GHSA-6v7q-wjvx-w8wg

<9.4.1-r0
  • L
Resource Exhaustion

<9.4.1-r0
  • L
GHSA-vvjj-xcjg-gr5g

<9.4.2-r0
  • L
Improper Handling of Unicode Encoding

<9.4.2-r0
  • C
CVE-2026-4800

<9.4.2-r0
  • M
Arbitrary Code Injection

<9.4.2-r0
  • L
CVE-2026-3449

<9.4.1-r0
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<9.4.2-r0
  • L
Improper Input Validation

<9.4.2-r0
  • L
Uncontrolled Recursion

<9.4.2-r0
  • M
Cross-site Scripting (XSS)

*
  • H
Out-of-bounds Write

*
  • M
Cross-site Scripting (XSS)

<9.4.2-r0
  • L
GHSA-r4q5-vmmm-2653

<9.4.1-r0
  • M
CVE-2026-2950

<9.4.2-r0
  • L
CVE-2026-2739

*
  • L
Arbitrary Code Injection

<9.4.2-r0
  • L
Resource Exhaustion

<9.4.1-r0
  • L
OS Command Injection

*
  • H
OS Command Injection

*
  • L
GHSA-c7w3-x93f-qmm8

<9.4.2-r0
  • H
Arbitrary Code Injection

<9.4.2-r0
  • M
Uncontrolled Recursion

*
  • L
Resource Exhaustion

<9.4.2-r0
  • L
Uncontrolled Recursion

*
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<9.4.2-r0