A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.
{ "cpes": [ "cpe:2.3:a:elasticsearch:kibana:*:*:*:*:*:node.js:*:*" ], "severity": "Critical" }