This page collects WhisperX intelligence signals tagged #Kibana. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
在 amaybaum-prod 维护的 Kibana 2 项目代码库中,一个关键依赖项被标记为存在可被利用的安全漏洞。项目当前使用的 `yaml-2.5.1.tgz` 库包含一个编号为 CVE-2026-33532 的漏洞,其 CVSS 评分为 4.3(中等严重性)。该漏洞被安全扫描工具明确标记为“可被利用”,意味着攻击者有可能通过特定的代码路径触发此漏洞。该依赖项通过项目的 `/package.json` 文件引入,并存在于最新的代码提交(dd41e44)中,表明这是一个活跃的、未修复的风险点。 此漏洞直接影响 JavaScript 生态中广泛使用的 YAML 解析与序列化库 `yaml`。虽然 4.3 的评分属于中等风险,但“...
A critical security scan has flagged the npm package `react-search-ui-views-1.20.2.tgz` for containing two reachable vulnerabilities within a production Kibana project. The highest severity score is 3.7 (CVSS), indicating a low-to-moderate risk that is nonetheless actively exploitable due to the 'reachable' designation...
A critical security exposure has been flagged within a prominent Kibana-related project, directly linked to a widely used React library. The dependency `react-router-dom-v5-compat-6.12.0.tgz` contains two vulnerabilities, with the highest severity scoring a maximum 8.0 on the CVSS scale. Crucially, these flaws are mark...
A security scanner has flagged a critical vulnerability in a non-standard Kibana repository containing the AWS Bedrock client library. The client-bedrock-runtime-3.687.0.tgz package harbors eight distinct vulnerabilities, with the highest reaching a CVSS score of 9.8—placing it in the critical severity range. The expos...