kibana-9.4-advanced

Direct Vulnerabilities

Known vulnerabilities in the kibana-9.4-advanced package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
GHSA-p6gq-j5cr-w38f

*
  • L
Overly Permissive Cross-domain Whitelist

<9.4.3-r0
  • L
CVE-2026-49458

<9.4.3-r0
  • L
Resource Exhaustion

<9.4.3-r0
  • L
Information Exposure

<9.4.3-r0
  • L
CVE-2026-48068

<9.4.3-r0
  • L
Protection Mechanism Failure

<9.4.3-r0
  • L
Uncontrolled Recursion

<9.4.3-r0
  • H
Resource Exhaustion

<9.4.3-r0
  • L
Interpretation Conflict

<9.4.3-r0
  • L
CVE-2026-49459

<9.4.3-r0
  • L
CVE-2026-48022

<9.4.3-r0
  • M
HTTP Response Splitting

<9.4.3-r0
  • M
HTTP Response Splitting

<9.4.3-r0
  • L
GHSA-76mc-f452-cxcm

<9.4.3-r0
  • L
Allocation of Resources Without Limits or Throttling

<9.4.3-r0
  • L
Uncontrolled Recursion

<9.4.3-r0
  • L
Server-Side Request Forgery (SSRF)

<9.4.3-r0
  • H
Information Exposure

<9.4.3-r0
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<9.4.3-r0
  • L
CVE-2026-48069

<9.4.3-r0
  • L
Directory Traversal

<9.4.3-r0
  • L
Inefficient Regular Expression Complexity

<9.4.3-r0
  • L
Improper Encoding or Escaping of Output

<9.4.3-r0
  • L
Resource Exhaustion

<9.4.3-r0
  • L
CVE-2026-48049

<9.4.3-r0
  • L
Cross-site Scripting (XSS)

<9.4.3-r0
  • M
Uncontrolled Recursion

<9.4.3-r0
  • L
Use of Less Trusted Source

<9.4.3-r0
  • L
CVE-2026-12143

<9.4.3-r0
  • L
CVE-2026-49978

<9.4.3-r0
  • L
Resource Exhaustion

<9.4.3-r0
  • L
GHSA-vxr8-fq34-vvx9

<9.4.3-r0
  • L
CVE-2026-48801

<9.4.3-r0
  • L
GHSA-x4vx-rjvf-j5p4

<9.4.3-r0
  • L
Algorithmic Complexity

<9.4.3-r0
  • L
Insufficient Verification of Data Authenticity

<9.4.3-r0
  • L
GHSA-cmwh-pvxp-8882

<9.4.3-r0
  • L
GHSA-gvmj-g25r-r7wr

<9.4.3-r0
  • L
Resource Exhaustion

<9.4.3-r0
  • L
CVE-2026-45618

<9.4.3-r0
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<9.4.3-r0
  • L
Unintended Proxy or Intermediary ('Confused Deputy')

<9.4.3-r0
  • L
Resource Exhaustion

<9.4.3-r0
  • L
Incorrect Regular Expression

<9.4.3-r0
  • L
HTTP Request Smuggling

<9.4.3-r0
  • M
Improper Authorization

<9.4.3-r0
  • L
CVE-2026-48038

<9.4.2-r0
  • L
OS Command Injection

<9.4.3-r0
  • L
XML Injection

*
  • H
Out-of-bounds Write

*
  • L
CVE-2026-6322

<9.4.3-r0
  • L
CVE-2026-2739

*
  • H
OS Command Injection

<9.4.3-r0
  • L
CVE-2026-6321

<9.4.3-r0
  • L
OS Command Injection

<9.4.3-r0
  • L
Uncontrolled Recursion

<9.4.3-r0
  • L
XML Injection

<9.4.3-r0
  • L
XML Injection

<9.4.3-r0
  • L
Improper Handling of Exceptional Conditions

<9.4.2-r0
  • L
CVE-2026-33464

<9.4.2-r0
  • L
CVE-2026-49095

<9.4.2-r0
  • L
CVE-2026-42400

<9.4.2-r0
  • L
Improper Handling of Unicode Encoding

<9.4.2-r0
  • L
GHSA-vvjj-xcjg-gr5g

<9.4.2-r0
  • H
Uncontrolled Recursion

<9.4.2-r0
  • L
CVE-2026-44974

<9.4.2-r0
  • L
Uncontrolled Recursion

<9.4.2-r0
  • C
CVE-2026-4800

<9.4.2-r0
  • M
Arbitrary Code Injection

<9.4.2-r0
  • M
Cross-site Scripting (XSS)

<9.4.2-r0
  • L
Arbitrary Code Injection

<9.4.2-r0
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<9.4.2-r0
  • L
GHSA-c7w3-x93f-qmm8

<9.4.2-r0
  • L
Improper Input Validation

<9.4.2-r0
  • H
Arbitrary Code Injection

<9.4.2-r0
  • L
CVE-2026-8723

<9.4.2-r0
  • M
CVE-2026-2950

<9.4.2-r0
  • L
Arbitrary Code Injection

<9.4.2-r0
  • L
Improper Validation of Specified Quantity in Input

<9.4.2-r0
  • L
Resource Exhaustion

<9.4.2-r0
  • H
Use of Uninitialized Resource

<9.4.2-r0
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<9.4.2-r0
  • L
Deserialization of Untrusted Data

<9.4.2-r0
  • L
Information Exposure Through Caching

<9.4.2-r0
  • L
CVE-2026-44979

<9.4.2-r0