CVE-2019-7609
Kibana Arbitrary Code Execution
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
9Exploited in Wild
YesDecision
Descriptions
Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
Las versiones anteriores a las 5.6.15 y 6.6.1 de Kibana contienen un error de ejecución de código arbitrario en el visualizador Timelion. Un atacante con acceso a la aplicación Timelion podría enviar una petición que intente ejecutar código javascript. Esto podría resultar en que un atacante ejecute comandos arbitrarios con permisos del proceso de Kibana en el sistema host.
An arbitrary code execution flaw was found in the Timelion visualizer in Kibana versions before 5.6.15 and 6.6.1. This flaw allows an attacker with access to the Timelion application to send a request that attempts to execute javascript code. This could lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
Kibana contain an arbitrary code execution flaw in the Timelion visualizer.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-02-07 CVE Reserved
- 2019-03-25 CVE Published
- 2019-10-23 First Exploit
- 2022-01-10 Exploited in Wild
- 2022-07-10 KEV Due Date
- 2024-08-04 CVE Updated
- 2024-10-18 EPSS Updated
CWE
- CWE-20: Improper Input Validation
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (15)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/LandGrey/CVE-2019-7609 | 2019-10-23 | |
| https://github.com/mpgn/CVE-2019-7609 | 2019-12-20 | |
| https://github.com/hekadan/CVE-2019-7609 | 2019-12-01 | |
| https://github.com/rhbb/CVE-2019-7609 | 2020-04-03 | |
| https://github.com/wolf1892/CVE-2019-7609 | 2022-02-10 | |
| https://github.com/Akshay15-png/CVE-2019-7609 | 2024-07-30 | |
| https://github.com/dnr6419/CVE-2019-7609 | 2021-08-25 | |
| https://github.com/OliveiraaX/CVE-2019-7609-KibanaRCE | 2023-07-17 | |
| http://packetstormsecurity.com/files/174569/Kibana-Timelion-Prototype-Pollution-Remote-Code-Execution.html | 2024-08-04 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://access.redhat.com/errata/RHBA-2019:2824 | 2024-07-24 | |
| https://access.redhat.com/errata/RHSA-2019:2860 | 2024-07-24 | |
| https://discuss.elastic.co/t/elastic-stack-6-6-1-and-5-6-15-security-update/169077 | 2024-07-24 | |
| https://www.elastic.co/community/security | 2024-07-24 | |
| https://access.redhat.com/security/cve/CVE-2019-7609 | 2019-09-30 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1696030 | 2019-09-30 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Elastic Search vendor "Elastic" | Kibana Search vendor "Elastic" for product "Kibana" | < 5.6.15 Search vendor "Elastic" for product "Kibana" and version " < 5.6.15" | - |
Affected
| ||||||
| Elastic Search vendor "Elastic" | Kibana Search vendor "Elastic" for product "Kibana" | >= 6.0.0 < 6.6.1 Search vendor "Elastic" for product "Kibana" and version " >= 6.0.0 < 6.6.1" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform" | 3.11 Search vendor "Redhat" for product "Openshift Container Platform" and version "3.11" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform" | 4.1 Search vendor "Redhat" for product "Openshift Container Platform" and version "4.1" | - |
Affected
| ||||||