.. / CVE-2019-7609

Exploit for Kibana Timelion - Arbitrary Code Execution (CVE-2019-7609)

Description:

Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.

Nuclei Template

View the template here CVE-2019-7609.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2019/CVE-2019-7609.yaml

References:

https://github.com/mpgn/CVE-2019-7609
https://access.redhat.com/errata/RHBA-2019:2824
https://discuss.elastic.co/t/elastic-stack-6-6-1-and-5-6-15-security-update/169077
https://www.elastic.co/community/security
https://nvd.nist.gov/vuln/detail/CVE-2019-7609

.. / CVE-2019-7609 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Kibana Timelion - Arbitrary Code Execution (CVE-2019-7609)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2019-7609