Deserialization Flaw in Kibana by Elastic Search
CVE-2024-37285

Currently unrated

Key Information:

Vendor: Elastic
Status: Kibana
Vendor: CVE Published:; 14 November 2024

Badges

👾 Exploit Exists📰 News Worthy

What is CVE-2024-37285?

A deserialization issue in Kibana allows attackers to execute arbitrary code by manipulating YAML documents. This vulnerability arises when Kibana incorrectly processes crafted payloads, necessitating specific permissions on Elasticsearch indices and within Kibana. Attackers must possess both write privilege on system indices .kibana_ingest* and the ability to manipulate restricted indices, combined with comprehensive Kibana privileges. Such an exploit poses significant risks to systems utilizing Kibana for visualization and data analysis.

News Articles

CybersecurityNews

CVE-2024-37285 CVE-2024-37288

Kibana Vulnerabilities Let Attackers Execute Arbitrary Code

Kibana Vulnerabilities, CVE-2024-37288 and CVE-2024-37285, allow attackers to execute arbitrary code through YAML deserialization issues.

References

https://discuss.elastic.co/t/kibana-8-15-1-security-updat...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2024
👾
Exploit known to exist
Sep 9, 2024
📰
First article discovered by CybersecurityNews
Sep 9, 2024