A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.
{ "severity": "Critical", "cpes": [ "cpe:2.3:a:elasticsearch:kibana:*:*:*:*:*:node.js:*:*" ] }