Multiple vulnerabilities in Kibana
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2017-11481 CVE-2017-11482 |
| CWE-ID | CWE-79 CWE-601 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Kibana Web applications / Other software |
| Vendor | Elastic Stack |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Cross-site scripting
EUVDB-ID: #VU37771
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-11481
CWE-ID:
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
MitigationInstall update from vendor's website.
Vulnerable software versionsKibana: 5.6.0 - 6.0.0
CPE2.3- cpe:2.3:a:elastic_stack:kibana:5.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:6.0.0:*:*:*:*:*:*:*
https://discuss.elastic.co/t/kibana-6-0-1-and-5-6-5-security-update/110571
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Open redirect
EUVDB-ID: #VU37772
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-11482
CWE-ID:
CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
The Kibana fix for CVE-2017-8451 was found to be incomplete. With X-Pack installed, Kibana versions before 6.0.1 and 5.6.5 have an open redirect vulnerability on the login page that would enable an attacker to craft a link that redirects to an arbitrary website.
MitigationInstall update from vendor's website.
Vulnerable software versionsKibana: 5.6.0 - 6.0.0
CPE2.3- cpe:2.3:a:elastic_stack:kibana:5.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:5.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:elastic_stack:kibana:6.0.0:*:*:*:*:*:*:*
https://discuss.elastic.co/t/kibana-6-0-1-and-5-6-5-security-update/110571
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
