CVE-2025-25015 - Prototype pollution in Elastic Kibana leads to arbitrary code execution via crafted file upload. CVSS 9.9. Viewer role exploit in older versions, elevated privileges needed in 8.17.1-8.17.2. Patch now. #CVE #Elastic #infosec

https://www.valtersit.com/cve/CVE-2025-25015/