CVE-2025-25014: Kibana arbitrary code execution via prototype pollution

Severity: Critical

CVSS Score: 9.8

A Prototype pollution vulnerability in Kibana leads to arbitrary code execution via crafted HTTP requests to machine learning and reporting endpoints.