{"id":"CLEANSTART-2026-ML12367","summary":"Security fixes for ghsa-2328-f5f3-gj25, ghsa-2w6w-674q-4c4q, ghsa-3644-q5cj-c5c7, ghsa-378v-28hj-76wf, ghsa-3v7f-55p6-f55p, ghsa-48c2-rrv3-qjmp, ghsa-4rc3-7j7w-m548, ghsa-56p5-8mhr-2fph, ghsa-5m6q-g25r-mvwx, ghsa-5vv4-hvf7-2h46, ghsa-66ff-xgx4-vchm, ghsa-685m-2w69-288q, ghsa-6chq-wfr3-2hj9, ghsa-6v7q-wjvx-w8wg, ghsa-75px-5xx7-5xc7, ghsa-8gc5-j5rx-235r, ghsa-9c88-49p5-5ggf, ghsa-c2c7-rcm5-vvqj, ghsa-chqc-8p9q-pq6q, ghsa-f269-vfmq-vjvj, ghsa-f886-m6hf-6m8v, ghsa-hvx9-hwr7-wjj9, ghsa-j3q9-mxjg-w52f, ghsa-jg4p-7fhp-p32p, ghsa-jp2q-39xq-3w4g, ghsa-jvwf-75h9-cwgg, ghsa-pf86-5x62-jrwf, ghsa-ppp5-5v6c-4jwp, ghsa-q3j6-qgpj-74h6, ghsa-q67f-28xg-22rw, ghsa-q7rr-3cgh-j5r3, ghsa-r399-636x-v7f6, ghsa-r4q5-vmmm-2653, ghsa-r5fr-rjxr-66jc, ghsa-rp42-5vxx-qpwr, ghsa-rpmf-866q-6p89, ghsa-v2v4-37r5-5v8g, ghsa-v39h-62p7-jpjc, ghsa-v9p9-hfj2-hcw8, ghsa-vrm6-8vpv-qv8q, ghsa-vvjj-xcjg-gr5g, ghsa-w5hq-g745-h8pq, ghsa-wmfp-5q7x-987x, ghsa-wphj-fx3q-84ch, ghsa-xq3m-2v4x-88gg applied in versions: 9.3.2-r3","details":"Multiple security vulnerabilities affect the kibana package. These issues are resolved in later releases. See references for individual vulnerability details.","modified":"2026-05-28T22:15:20.327206618Z","published":"2026-05-21T08:09:24.246960Z","upstream":["ghsa-2328-f5f3-gj25","ghsa-2w6w-674q-4c4q","ghsa-3644-q5cj-c5c7","ghsa-378v-28hj-76wf","ghsa-3v7f-55p6-f55p","ghsa-48c2-rrv3-qjmp","ghsa-4rc3-7j7w-m548","ghsa-56p5-8mhr-2fph","ghsa-5m6q-g25r-mvwx","ghsa-5vv4-hvf7-2h46","ghsa-66ff-xgx4-vchm","ghsa-685m-2w69-288q","ghsa-6chq-wfr3-2hj9","ghsa-6v7q-wjvx-w8wg","ghsa-75px-5xx7-5xc7","ghsa-8gc5-j5rx-235r","ghsa-9c88-49p5-5ggf","ghsa-c2c7-rcm5-vvqj","ghsa-chqc-8p9q-pq6q","ghsa-f269-vfmq-vjvj","ghsa-f886-m6hf-6m8v","ghsa-hvx9-hwr7-wjj9","ghsa-j3q9-mxjg-w52f","ghsa-jg4p-7fhp-p32p","ghsa-jp2q-39xq-3w4g","ghsa-jvwf-75h9-cwgg","ghsa-pf86-5x62-jrwf","ghsa-ppp5-5v6c-4jwp","ghsa-q3j6-qgpj-74h6","ghsa-q67f-28xg-22rw","ghsa-q7rr-3cgh-j5r3","ghsa-r399-636x-v7f6","ghsa-r4q5-vmmm-2653","ghsa-r5fr-rjxr-66jc","ghsa-rp42-5vxx-qpwr","ghsa-rpmf-866q-6p89","ghsa-v2v4-37r5-5v8g","ghsa-v39h-62p7-jpjc","ghsa-v9p9-hfj2-hcw8","ghsa-vrm6-8vpv-qv8q","ghsa-vvjj-xcjg-gr5g","ghsa-w5hq-g745-h8pq","ghsa-wmfp-5q7x-987x","ghsa-wphj-fx3q-84ch","ghsa-xq3m-2v4x-88gg"],"database_specific":{},"references":[{"type":"ADVISORY","url":"https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-ML12367.json"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-2328-f5f3-gj25"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-2w6w-674q-4c4q"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-3644-q5cj-c5c7"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-378v-28hj-76wf"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-3v7f-55p6-f55p"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-48c2-rrv3-qjmp"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-4rc3-7j7w-m548"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-56p5-8mhr-2fph"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-5m6q-g25r-mvwx"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-5vv4-hvf7-2h46"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-66ff-xgx4-vchm"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-685m-2w69-288q"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-6chq-wfr3-2hj9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-6v7q-wjvx-w8wg"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-75px-5xx7-5xc7"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-8gc5-j5rx-235r"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-9c88-49p5-5ggf"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-c2c7-rcm5-vvqj"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-chqc-8p9q-pq6q"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-f269-vfmq-vjvj"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-f886-m6hf-6m8v"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-hvx9-hwr7-wjj9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-j3q9-mxjg-w52f"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-jg4p-7fhp-p32p"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-jp2q-39xq-3w4g"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-jvwf-75h9-cwgg"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-pf86-5x62-jrwf"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-ppp5-5v6c-4jwp"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-q3j6-qgpj-74h6"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-q67f-28xg-22rw"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-q7rr-3cgh-j5r3"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-r399-636x-v7f6"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-r4q5-vmmm-2653"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-r5fr-rjxr-66jc"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-rp42-5vxx-qpwr"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-rpmf-866q-6p89"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-v2v4-37r5-5v8g"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-v39h-62p7-jpjc"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-v9p9-hfj2-hcw8"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-vrm6-8vpv-qv8q"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-vvjj-xcjg-gr5g"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-w5hq-g745-h8pq"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-wmfp-5q7x-987x"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-wphj-fx3q-84ch"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-xq3m-2v4x-88gg"}],"affected":[{"package":{"name":"kibana","ecosystem":"CleanStart"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.3.2-r3"}]}],"database_specific":{"source":"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-ML12367.json"}}],"schema_version":"1.7.5"}