A severe heap corruption vulnerability in Kibana could let attackers achieve remote code execution using specially crafted HTML pages. The vulnerability, designated as CVE-2025-2135, stems from a Type Confusion flaw in the underlying Chromium engine and carries a maximum CVSSv3.1 score of 9.9, indicating its critical severity level. Kibana RCE Vulnerability The security flaw was […]
The post Critical Kibana Vulnerabilities Allows Heap Corruption and Remote Code Execution appeared first on Cyber Security News.
This article has been indexed from Cyber Security News