Red Hat Bugzilla – Bug 1395579
CVE-2016-10365 kibana: Open redirect vulnerability (ESA-2016-09)
Last modified: 2017-07-12 19:56:56 EDT
Kibana versions before 4.6.3 and 5.0.1 have an open redirect vulnerability that would enable an attacker to craft a link in the Kibana domain that redirects to an arbitrary website.
This issue does not appear to affect the versions of Kibana as shipped with Red Hat Openshift Enterprise.