Showing 1 - 1 of 1

CVE-2019-7610

Status Candidate

Overview

Kibana versions before 6.6.1 contain an arbitrary code execution flaw in the security audit logger. If a Kibana instance has the setting xpack.security.audit.enabled set to true, an attacker could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.

Related Files

Red Hat Security Advisory 2019-2860-01: Posted Sep 30, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2860-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains updates to kibana in Red Hat OpenShift Container Platform 4.1.18. Issues addressed include a code execution vulnerability.; tags | advisory, code execution; systems | linux, redhat; advisories | CVE-2019-7608, CVE-2019-7609, CVE-2019-7610; SHA-256 | bb76f610ed81e573d24833b1caefeb4aa5c5ac9c965eea753e926f2d7e325640; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 218 files
indoushka 133 files
Ubuntu 82 files
Gentoo 33 files
Debian 26 files
Jasper Nota 25 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Sebastian Hamann 8 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,110)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,919)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,636)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,782)
UNIX (9,441)
UnixWare (187)
Windows (6,677)
Other

CVE-2019-7610

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems