CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25014

A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.3%

CVSS Severity

CVSS v3 Score 9.1

References

https://discuss.elastic.co/t/kibana-8-17-6-8-18-1-or-9-0-1-security-update-esa-2025-07/377868

Products affected by CVE-2025-25014

Elastic » Kibana » Version: 8.10.0

cpe:2.3:a:elastic:kibana:8.10.0
Elastic » Kibana » Version: 8.10.1

cpe:2.3:a:elastic:kibana:8.10.1
Elastic » Kibana » Version: 8.10.2

cpe:2.3:a:elastic:kibana:8.10.2
Elastic » Kibana » Version: 8.10.3

cpe:2.3:a:elastic:kibana:8.10.3
Elastic » Kibana » Version: 8.10.4

cpe:2.3:a:elastic:kibana:8.10.4
Elastic » Kibana » Version: 8.11.0

cpe:2.3:a:elastic:kibana:8.11.0
Elastic » Kibana » Version: 8.11.1

cpe:2.3:a:elastic:kibana:8.11.1
Elastic » Kibana » Version: 8.11.2

cpe:2.3:a:elastic:kibana:8.11.2
Elastic » Kibana » Version: 8.11.3

cpe:2.3:a:elastic:kibana:8.11.3
Elastic » Kibana » Version: 8.11.4

cpe:2.3:a:elastic:kibana:8.11.4
Elastic » Kibana » Version: 8.12.0

cpe:2.3:a:elastic:kibana:8.12.0
Elastic » Kibana » Version: 8.12.1

cpe:2.3:a:elastic:kibana:8.12.1
Elastic » Kibana » Version: 8.12.2

cpe:2.3:a:elastic:kibana:8.12.2
Elastic » Kibana » Version: 8.13.0

cpe:2.3:a:elastic:kibana:8.13.0
Elastic » Kibana » Version: 8.13.1

cpe:2.3:a:elastic:kibana:8.13.1
Elastic » Kibana » Version: 8.13.2

cpe:2.3:a:elastic:kibana:8.13.2
Elastic » Kibana » Version: 8.13.3

cpe:2.3:a:elastic:kibana:8.13.3
Elastic » Kibana » Version: 8.13.4

cpe:2.3:a:elastic:kibana:8.13.4
Elastic » Kibana » Version: 8.14.0

cpe:2.3:a:elastic:kibana:8.14.0
Elastic » Kibana » Version: 8.14.1

cpe:2.3:a:elastic:kibana:8.14.1
Elastic » Kibana » Version: 8.14.2

cpe:2.3:a:elastic:kibana:8.14.2
Elastic » Kibana » Version: 8.14.3

cpe:2.3:a:elastic:kibana:8.14.3
Elastic » Kibana » Version: 8.15.0

cpe:2.3:a:elastic:kibana:8.15.0
Elastic » Kibana » Version: 8.15.1

cpe:2.3:a:elastic:kibana:8.15.1
Elastic » Kibana » Version: 8.15.2

cpe:2.3:a:elastic:kibana:8.15.2
Elastic » Kibana » Version: 8.15.3

cpe:2.3:a:elastic:kibana:8.15.3
Elastic » Kibana » Version: 8.15.4

cpe:2.3:a:elastic:kibana:8.15.4
Elastic » Kibana » Version: 8.15.5

cpe:2.3:a:elastic:kibana:8.15.5
Elastic » Kibana » Version: 8.16.0

cpe:2.3:a:elastic:kibana:8.16.0
Elastic » Kibana » Version: 8.16.1

cpe:2.3:a:elastic:kibana:8.16.1
Elastic » Kibana » Version: 8.16.2

cpe:2.3:a:elastic:kibana:8.16.2
Elastic » Kibana » Version: 8.16.3

cpe:2.3:a:elastic:kibana:8.16.3
Elastic » Kibana » Version: 8.16.4

cpe:2.3:a:elastic:kibana:8.16.4
Elastic » Kibana » Version: 8.16.5

cpe:2.3:a:elastic:kibana:8.16.5
Elastic » Kibana » Version: 8.16.6

cpe:2.3:a:elastic:kibana:8.16.6
Elastic » Kibana » Version: 8.17.0

cpe:2.3:a:elastic:kibana:8.17.0
Elastic » Kibana » Version: 8.17.1

cpe:2.3:a:elastic:kibana:8.17.1
Elastic » Kibana » Version: 8.17.2

cpe:2.3:a:elastic:kibana:8.17.2
Elastic » Kibana » Version: 8.17.3

cpe:2.3:a:elastic:kibana:8.17.3
Elastic » Kibana » Version: 8.17.4

cpe:2.3:a:elastic:kibana:8.17.4
Elastic » Kibana » Version: 8.17.5

cpe:2.3:a:elastic:kibana:8.17.5
Elastic » Kibana » Version: 8.18.0

cpe:2.3:a:elastic:kibana:8.18.0
Elastic » Kibana » Version: 8.3.0

cpe:2.3:a:elastic:kibana:8.3.0
Elastic » Kibana » Version: 8.3.1

cpe:2.3:a:elastic:kibana:8.3.1
Elastic » Kibana » Version: 8.3.2

cpe:2.3:a:elastic:kibana:8.3.2
Elastic » Kibana » Version: 8.3.3

cpe:2.3:a:elastic:kibana:8.3.3
Elastic » Kibana » Version: 8.4.0

cpe:2.3:a:elastic:kibana:8.4.0
Elastic » Kibana » Version: 8.4.1

cpe:2.3:a:elastic:kibana:8.4.1
Elastic » Kibana » Version: 8.4.2

cpe:2.3:a:elastic:kibana:8.4.2
Elastic » Kibana » Version: 8.4.3

cpe:2.3:a:elastic:kibana:8.4.3
Elastic » Kibana » Version: 8.5.0

cpe:2.3:a:elastic:kibana:8.5.0
Elastic » Kibana » Version: 8.5.1

cpe:2.3:a:elastic:kibana:8.5.1
Elastic » Kibana » Version: 8.5.2

cpe:2.3:a:elastic:kibana:8.5.2
Elastic » Kibana » Version: 8.5.3

cpe:2.3:a:elastic:kibana:8.5.3
Elastic » Kibana » Version: 8.6.0

cpe:2.3:a:elastic:kibana:8.6.0
Elastic » Kibana » Version: 8.6.1

cpe:2.3:a:elastic:kibana:8.6.1
Elastic » Kibana » Version: 8.6.2

cpe:2.3:a:elastic:kibana:8.6.2
Elastic » Kibana » Version: 8.6.3

cpe:2.3:a:elastic:kibana:8.6.3
Elastic » Kibana » Version: 8.7.0

cpe:2.3:a:elastic:kibana:8.7.0
Elastic » Kibana » Version: 8.7.1

cpe:2.3:a:elastic:kibana:8.7.1
Elastic » Kibana » Version: 8.8.0

cpe:2.3:a:elastic:kibana:8.8.0
Elastic » Kibana » Version: 8.8.1

cpe:2.3:a:elastic:kibana:8.8.1
Elastic » Kibana » Version: 8.8.2

cpe:2.3:a:elastic:kibana:8.8.2
Elastic » Kibana » Version: 8.9.0

cpe:2.3:a:elastic:kibana:8.9.0
Elastic » Kibana » Version: 8.9.1

cpe:2.3:a:elastic:kibana:8.9.1
Elastic » Kibana » Version: 8.9.2

cpe:2.3:a:elastic:kibana:8.9.2
Elastic » Kibana » Version: 9.0.0

cpe:2.3:a:elastic:kibana:9.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-25014

Products

Pricing

Contact Us