Unrated severityNVD Advisory· Published Jun 19, 2024· Updated Aug 1, 2024

CVE-2024-23443

Description

A high-privileged user, allowed to create custom osquery packs 17 could affect the availability of Kibana by uploading a maliciously crafted osquery pack.

Affected products

osv-coords2 versions
pkg:bitnami/elk pkg:bitnami/kibana
< 8.14.0+ 1 more
- (no CPE)range: < 8.14.0
- (no CPE)range: < 8.14.0
Elastic/Kibanav5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

discuss.elastic.co/t/kibana-8-14-0-7-17-22-security-update-esa-2024-11/361460mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000