Lucene search
HistoryJun 14, 2024 - 3:15 p.m.
CVE-2024-23442
cve-2024-23442
kibana
maliciously crafted url
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
25.9%
An open redirect issue was discovered in Kibana that could lead to a user being redirected to an arbitrary website if they use a maliciously crafted Kibana URL.
Related
osv
osv
BIT-elk-2024-23442
2024-06-18 07:17:33
BIT-kibana-2024-23442
2024-06-18 07:22:49
cvelist
cvelist
CVE-2024-23442 Kibana open redirect issue
2024-06-14 14:26:53
cve
cve
CVE-2024-23442
2024-06-14 15:15:49
vulnrichment
vulnrichment
CVE-2024-23442 Kibana open redirect issue
2024-06-14 14:26:53
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
25.9%
Related for NVD:CVE-2024-23442