CVE-2018-17246 - Inclusion of Functionality From Untrusted Control Sphere vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.

Vulnerable Configurations

Nessus

  • NASL familyCGI abuses
    NASL idKIBANA_ESA_2018_18.NASL
    descriptionNethanel Coppenhagen of CyberArk Labs discovered Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. An attacker with access to the Kibana Console API could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
    last seen2020-01-01
    modified2020-01-02
    plugin id118798
    published2018-11-07
    reporterThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/118798
    titleKibana ESA-2018-18
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2019-2_0-0132_ELASTICSEARCH.NASL
    descriptionAn update of the elasticsearch package has been released.
    last seen2020-01-01
    modified2020-01-02
    plugin id122906
    published2019-03-18
    reporterThis script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/122906
    titlePhoton OS 2.0: Elasticsearch PHSA-2019-2.0-0132
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2019-2_0-0132_NGINX.NASL
    descriptionAn update of the nginx package has been released.
    last seen2020-01-01
    modified2020-01-02
    plugin id122908
    published2019-03-18
    reporterThis script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/122908
    titlePhoton OS 2.0: Nginx PHSA-2019-2.0-0132
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2019-2_0-0132_KIBANA.NASL
    descriptionAn update of the kibana package has been released.
    last seen2020-01-01
    modified2020-01-02
    plugin id122907
    published2019-03-18
    reporterThis script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/122907
    titlePhoton OS 2.0: Kibana PHSA-2019-2.0-0132
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2019-2_0-0132_PYTHON3.NASL
    descriptionAn update of the python3 package has been released.
    last seen2020-01-01
    modified2020-01-02
    plugin id122909
    published2019-03-18
    reporterThis script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/122909
    titlePhoton OS 2.0: Python3 PHSA-2019-2.0-0132

Redhat

advisories
rhsa
idRHBA-2018:3743