Main Vulnerability Database Vulnerabilities #VU31415

Improper Authorization in Kibana - CVE-2016-1000219

Published: June 17, 2017 / Updated: July 18, 2020

Vulnerability identifier: #VU31415

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2016-1000219

CWE-ID: CWE-285

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Elastic Stack

Affected software:
Kibana

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to manipulate data.

Kibana before 4.5.4 and 4.1.11 when a custom output is configured for logging in, cookies and authorization headers could be written to the log files. This information could be used to hijack sessions of other users when using Kibana behind some form of authentication such as Shield.

How to mitigate CVE-2016-1000219

Install update from vendor's website.

Sources

http://www.securityfocus.com/bid/99178
https://www.elastic.co/community/security

Improper Authorization in Kibana - CVE-2016-1000219

Detailed vulnerability description

How to mitigate CVE-2016-1000219

Sources

Please verify you're human