Kibana Cross Site Scripting and Arbitrary Code Execution Vulnerabilities

Bugtraq ID: 107148
Class: Input Validation Error
CVE: CVE-2019-7608
CVE-2019-7609
CVE-2019-7610
Remote: Yes
Local: No
Published: Feb 19 2019 12:00AM
Updated: Feb 19 2019 12:00AM
Credit: The vendor reported these issues.
Vulnerable: Elasticsearch Kibana 6.6
Elasticsearch Kibana 5.6.14
Elasticsearch Kibana 5.6.13
Elasticsearch Kibana 5.6.12
Elasticsearch Kibana 5.6.6
Elasticsearch Kibana 5.6.5
Elasticsearch Kibana 5.6.4
Elasticsearch Kibana 5.6.3
Elasticsearch Kibana 5.6.2
Elasticsearch Kibana 5.6.1
Elasticsearch Kibana 5.6
Not Vulnerable: Elasticsearch Kibana 6.6.1
Elasticsearch Kibana 5.6.15


 

Privacy Statement
Copyright 2010, SecurityFocus