← Find more feeds

discuss.elastic.co

Security Announcements - Discuss the Elastic Stack

Get the latest updates from Security Announcements - Discuss the Elastic Stack directly as they happen.

Follow now 38 followers

Latest posts

Last updated about 1 month ago

Kibana 8.19.7, 9.1.7, and 9.2.1 Security Update (ESA-2025-24)

about 1 month ago

Kibana Origin Validation Error (ESA-2025-24) Origin Validation Error in Kibana can lead...

Read full

Kibana 8.19.7, 9.1.7, 9.2.1 Security Update (ESA-2025-25)

about 1 month ago

Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (ESA-2025-25)...

Read full

Elastic Defend 8.19.6, 9.1.6, and 9.2.0 Security Update (ESA-2025-23)

about 1 month ago

Elastic Defend Improper Preservation of Permissions (ESA-2025-23) Improper preservation of permissions in...

Read full

Elastic Cloud Enterprise (ECE) 3.8.3 and 4.0.3 Security Update (ESA-2025-22)

about 1 month ago

Elastic Cloud Enterprise Improper Authorization (ESA-2025-22) Improper Authorization in Elastic Cloud Enterprise...

Read full

Elastic Cloud Enterprise (ECE) 3.8.2 and 4.0.2 Security Update (ESA-2025-21)

2 months ago

Elastic Cloud Enterprise (ECE) Improper Neutralization of Special Elements Used in a...

Read full

Kibana - Crowdstrike Connector 8.18.8, 8.19.5, 9.0.8, and 9.1.5 Security Update (ESA-2025-19)

2 months ago

Kibana Insufficiently Protected Credentials in the CrowdStrike Connector (ESA-2025-19) Insufficiently Protected Credentials...

Read full

Elasticsearch 8.18.8, 8.19.5, 9.0.8, 9.1.5 Security Update (ESA-2025-18)

2 months ago

Elasticsearch Insertion of sensitive information in log file (ESA-2025-18) Insertion of sensitive...

Read full

Kibana 8.18.8, 8.19.5, 9.0.8, 9.1.5 Security Update (ESA-2025-17)

2 months ago

Kibana Stored Cross-Site-Scripting(XSS) (ESA-2025-17) Improper Validation of Specified Type of Input in...

Read full

Kibana 8.18.8, 8.19.4, 9.0.7, 9.1.4 Security Update (ESA-2025-16)

2 months ago

Kibana Cross-Site-Scripting (XSS) (ESA-2025-16) Improper Neutralization of Input During Web Page Generation...

Read full

Kibana 8.18.8, 8.19.5, 9.0.8, and 9.1.5 Security Update (ESA-2025-15)

2 months ago

Kibana Cross-Site Scripting (XSS) (ESA-2025-15) Improper Neutralization of Input During Web Page...

Read full

Enterprise Search 8.18.6, 8.19.3 Security Update (ESA-2025-15) (CVE-2025-54988)

4 months ago

Enterprise Search XML external entity (XXE) injection in Apache Tika (ESA-2025-15) On...

Read full

Elasticsearch 8.18.6, 8.19.3, 9.0.6, and 9.1.3 Security Update (ESA-2025-14) (CVE-2025-54988)

4 months ago

Elasticsearch XML external entity (XXE) injection in Apache Tika (ESA-2025-14) On August...

Read full

Or log in

Everything you care about in one place

Security Announcements - Discuss the Elastic Stack

Latest posts

Kibana 8.19.7, 9.1.7, and 9.2.1 Security Update (ESA-2025-24)

Kibana 8.19.7, 9.1.7, 9.2.1 Security Update (ESA-2025-25)

Elastic Defend 8.19.6, 9.1.6, and 9.2.0 Security Update (ESA-2025-23)

Elastic Cloud Enterprise (ECE) 3.8.3 and 4.0.3 Security Update (ESA-2025-22)

Elastic Cloud Enterprise (ECE) 3.8.2 and 4.0.2 Security Update (ESA-2025-21)

Kibana - Crowdstrike Connector 8.18.8, 8.19.5, 9.0.8, and 9.1.5 Security Update (ESA-2025-19)

Elasticsearch 8.18.8, 8.19.5, 9.0.8, 9.1.5 Security Update (ESA-2025-18)

Kibana 8.18.8, 8.19.5, 9.0.8, 9.1.5 Security Update (ESA-2025-17)

Kibana 8.18.8, 8.19.4, 9.0.7, 9.1.4 Security Update (ESA-2025-16)

Kibana 8.18.8, 8.19.5, 9.0.8, and 9.1.5 Security Update (ESA-2025-15)

Enterprise Search 8.18.6, 8.19.3 Security Update (ESA-2025-15) (CVE-2025-54988)

Elasticsearch 8.18.6, 8.19.3, 9.0.6, and 9.1.3 Security Update (ESA-2025-14) (CVE-2025-54988)

Try Feeder for free