Page 4 of 31 results (0.000 seconds)
CVSS: 4.9EPSS: 9%CPEs: 2EXPL: 1
CVSS: 4.9EPSS: 9%CPEs: 2EXPL: 1CVE-2019-7616
https://notcve.org/view.php?id=CVE-2019-7616
30 Jul 2019 — Kibana versions before 6.8.2 and 7.2.1 contain a server side request forgery (SSRF) flaw in the graphite integration for Timelion visualizer. An attacker with administrative Kibana access could set the timelion:graphite.url configuration option to an arbitrary URL. This could possibly lead to an attacker accessing external URL resources as the Kibana process on the host system. Kibana versiones anteriores a 6.8.2 y 7.2.1, contienen un fallo de tipo server side request forgery (SSRF) en la integración de gra... • https://github.com/random-robbie/CVE-2019-7616 • CWE-918: Server-Side Request Forgery (SSRF) •