{"uuid": "e5e322a8-24ce-402b-9ae0-587040c86057", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25014", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15177", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25014\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.\n\ud83d\udccf Published: 2025-05-06T17:30:45.197Z\n\ud83d\udccf Modified: 2025-05-06T17:48:59.583Z\n\ud83d\udd17 References:\n1. https://discuss.elastic.co/t/kibana-8-17-6-8-18-1-or-9-0-1-security-update-esa-2025-07/377868", "creation_timestamp": "2025-05-06T18:21:33.000000Z"}