CVE-2019-7609

high-risk
Published 2019-03-25

Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.

Do I need to act?

!
94.4% chance of exploitation in next 30 days
EPSS score — higher than 6% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
+
Fix available
Upgrade to: e4f1e8f824c4cdc70bfa09a5ec734d7108366456, c0c81857d435f499ec2514d9a4823e3dc87021bd
10
CVSS 10.0/10 Critical
NETWORK / LOW complexity

Affected Products (3)

Affected Vendors

Redhat Elastic

References (11)

Exploit http://packetstormsecurity.com/files/174569/Kibana-Timelion-Prototype-Pollution-...
Third Party Advisory https://access.redhat.com/errata/RHBA-2019:2824
Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2860
Vendor Advisory https://discuss.elastic.co/t/elastic-stack-6-6-1-and-5-6-15-security-update/1690...
Broken Link https://www.elastic.co/community/security
Exploit http://packetstormsecurity.com/files/174569/Kibana-Timelion-Prototype-Pollution-...
Third Party Advisory https://access.redhat.com/errata/RHBA-2019:2824
Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2860
Vendor Advisory https://discuss.elastic.co/t/elastic-stack-6-6-1-and-5-6-15-security-update/1690...
Broken Link https://www.elastic.co/community/security
US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-...
69
/ 100
high-risk
Severity 33/34 · Critical
Exploitability 27/34 · High
Exposure 9/34 · Low