websafe-kb/07-framework-security/platforms/kibana/INDEX.md

# Kibana

> `LAB ONLY` | `AUTHORIZED TARGETS ONLY` | 自动生成索引

- 系统 ID: `kibana`
- 分类: `platforms`
- 覆盖策略: `rolling-24m`
- 总案例数: `47`
- 近 30 天新增/更新: `0`
- 重点 Markdown 案例数: `0`
- 已实证(真实版本): `0`
- 已实证(synthetic): `0`
- 阻塞数: `0`
- 待人工/缺浏览器证据: `47`
- 最近渲染时间: `2026-04-02T09:18:51+00:00`

## 目标约束

- 适用目标类型: `lab-local, lab-public, authorized-third-party`
- 是否允许公网验证: `yes, but ownership or authorization is required`
- 授权前提: 资产归属可证明，或已取得书面/明确授权。
- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作

## 来源

- `official` [Elastic Product Security](https://www.elastic.co/product-security) (mode=core)
- `official` [Elastic Security Announcements RSS](https://discuss.elastic.co/c/announcements/security-announcements/31.rss) (mode=core)
- `official` [NVD Kibana](https://nvd.nist.gov/vuln/search) (keyword=Kibana; mode=core)

## 案例列表

| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|------|--------|----------|----------|----------|------------|----------|--------|
| Kibana 8.19.13, 9.2.7, 9.3.2 Security Update (ESA-2026-20) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Mar 2026 16:59:58 +0000` | - |
| Elasticsearch 8.19.8, 9.1.8 Security Update (ESA-2026-18) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Mar 2026 16:59:18 +0000` | - |
| Packetbeat 8.19.11, 9.2.5 Security Update (ESA-2026-11) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Mar 2026 16:56:17 +0000` | - |
| Metricbeat 8.19.13, 9.2.5 Security Update (ESA-2026-09) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Mar 2026 16:54:15 +0000` | - |
| Logstash 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-06) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Mar 2026 16:53:51 +0000` | - |
| Kibana 8.19.12, 9.2.6, 9.3.1 Security Update (ESA-2026-19) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Mar 2026 16:51:08 +0000` | - |
| Kibana 8.19.12, 9.2.6, 9.3.1 Security Update (ESA-2026-13) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-04) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-34) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 9.3.1 Security Update (ESA-2026-17) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| next page → | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.8, 9.1.8, and 9.2.2 Security Update (ESA-2025-28) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.11, 9.2.5 Security Update (ESA-2026-14) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Security Announcements | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Synthetics Recorder 1.4.15 Security Update (ESA-2026-16) - CVE-2025-6554 and CVE-2025-7657 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Guidelines | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Announcements | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Packetbeat 8.19.11, 9.2.5 Security Update (ESA-2026-10) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.7, 9.1.7, and 9.2.1 Security Update (ESA-2025-24) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.11, 9.2.5 Security Update (ESA-2026-15) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Elasticsearch 8.19.8, 9.1.8, and 9.2.2 Security Update (ESA-2025-37) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-03) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-35) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Packetbeat 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-02) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-08) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.7, 9.1.7, and 9.2.1 Security Update (ESA-2025-39) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Terms of Service | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Privacy Policy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Trademarks | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.8, 9.1.8, and 9.2.2 Security Update (ESA-2025-38) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Categories | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Discuss the Elastic Stack | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Packetbeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-30) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Metricbeat 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-01) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.7, 9.1.7, 9.2.1 Security Update (ESA-2025-25) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Elasticsearch 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-33) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| About the Security Announcements category | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Brand | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-36) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Elasticsearch 8.19.8, 9.1.8, and 9.2.2 Security Update (ESA-2025-27) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Packetbeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-31) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.12, 9.2.6, 9.3.1 Security Update (ESA-2026-12) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Kibana 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-05) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Filebeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-32) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Code of Conduct | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Packetbeat 8.19.9, 9.1.9, and 9.2.3 Security Update (ESA-2025-29) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
| Elasticsearch 8.19.10, 9.1.10, 9.2.4 Security Update (ESA-2026-07) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |