Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2019/08/30 2:59 p.m.33 views

CVE-2019-13423

Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a Kibana is configured to use Single-Sign-On as...

8.8CVSS1.2AI score0.00677EPSS
Exploits0References3
nvd
nvd
added 2019/08/23 2:15 p.m.28 views

CVE-2019-13423

Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a Kibana is configured to use Single-Sign-On as...

8.8CVSS8.7AI score0.00677EPSS
Exploits0References2
osv
osv
added 2019/08/23 2:15 p.m.25 views

CVE-2019-13423

Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a Kibana is configured to use Single-Sign-On as...

8.8CVSS6.9AI score
Exploits0References2
cve
cve
added 2019/08/23 1:30 p.m.58 views

CVE-2019-13423

CVE-2019-13423 describes an impersonation vulnerability in floragunn Search Guard Kibana Plugin, affecting versions before 5.6.8-7 and before 6.x.y-12. The issue arises when an authenticated Kibana user presents incorrect credentials under a specific configuration: Kibana uses SSO (Kerberos, JWT,...

8.8CVSS8.7AI score0.00677EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder