Download
| Alert*
oval:org.secpod.oval:def:58407
kibana is installed (dpkg) oval:org.secpod.oval:def:67619 Kibana is installed on Mac OS X oval:org.secpod.oval:def:58401 kibana is installed oval:org.secpod.oval:def:502568 kibana is installed oval:org.secpod.oval:def:67623 The host is installed with Kibana before 6.8.9 or 7.x before 7.7.0 and is prone to a prototype pollution vulnerability. A flaw is present in the application, which fails to properly handle an issue in Upgrade Assistant. Successful exploitation could allow an authenticated attacker to insert data tha ... oval:org.secpod.oval:def:67622 The host is installed with Kibana before 6.8.9 or 7.x before 7.7.0 and is prone to a prototype pollution vulnerability. A flaw is present in the application, which fails to properly handle an issue in TSVB. Successful exploitation could allow an authenticated attacker to insert data that would cause ... oval:org.secpod.oval:def:67627 The host is installed with Kibana before 6.8.6 or 7.x before 7.5.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in the coordinate and region map visualizations. Successful exploitation could allow an attacker to e ... oval:org.secpod.oval:def:67630 The host is installed with Kibana before 5.6.15 or 6.x before 6.6.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in unspecified vectors. Successful exploitation could allow an attacker to obtain sensitive informat ... oval:org.secpod.oval:def:67621 The host is installed with Kibana before 6.8.10 or 7.x before 7.7.1 and is prone to a stored cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in TSVB visualization. Successful exploitation could allow the attacker to obtain sensitive i ... oval:org.secpod.oval:def:67632 The host is installed with Kibana before 5.6.15 or 6.x before 6.6.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle an issue in security audit logger. Successful exploitation could allow an attacker to execute arbitrary ... oval:org.secpod.oval:def:63612 The host is installed with kibana before 6.8.9 or 7.x before 7.7.0 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle an issue in TSVB visualization. Successful exploitation allows attackers to obtain sensitive information from, or perfo ... oval:org.secpod.oval:def:63613 The host is installed with kibana before 6.8.9 or 7.x before 7.7.0 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle an issue in TSVB visualization. Successful exploitation allows attackers to obtain sensitive information from, or perfo ... oval:org.secpod.oval:def:63614 The host is installed with kibana before 6.8.9 or 7.x before 7.7.0 and is prone to a code injection vulnerability. A flaw is present in the application, which fails to handle TSVB visualizations where authenticated attacker could insert data that would cause Kibana to execute arbitrary code. Success ... oval:org.secpod.oval:def:63615 The host is installed with kibana before 6.8.9 or 7.x before 7.7.0 and is prone to a code injection vulnerability. A flaw is present in the application, which fails to handle TSVB visualizations where authenticated attacker could insert data that would cause Kibana to execute arbitrary code. Success ... oval:org.secpod.oval:def:63616 The host is installed with kibana 6.7.0 to 6.8.8 and 7.0.0 to 7.6.2 and is prone to a code injection vulnerability. A flaw is present in the application, which fails to handle Kibana index where an attacker could insert data that would cause Kibana to execute arbitrary code. Successful exploitation ... oval:org.secpod.oval:def:63617 The host is installed with kibana 6.7.0 to 6.8.8 and 7.0.0 to 7.6.2 and is prone to a code injection vulnerability. A flaw is present in the application, which fails to handle Kibana index where an attacker could insert data that would cause Kibana to execute arbitrary code. Successful exploitation ... oval:org.secpod.oval:def:67618 The host is installed with Kibana before 6.8.11 or 7.x before 7.8.1 and is prone to a stored cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in region map visualization. Successful exploitation could allow an attacker to obtain sensit ... oval:org.secpod.oval:def:67620 The host is installed with Kibana before 6.8.11 or 7.x before 7.8.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle an issue in Timelion. Successful exploitation could allow an attacker to cause Kibana process to consume large a ... oval:org.secpod.oval:def:67629 The host is installed with Kibana before 6.8.2 or 7.x before 7.2.1 and is prone to a server side request forgery vulnerability. A flaw is present in the application, which fails to properly handle an issue in the graphite integration for Timelion visualizer. Successful exploitation could allow an at ... oval:org.secpod.oval:def:67631 The host is installed with Kibana before 5.6.15 or 6.x before 6.6.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle an issue in Timelion visualizer. Successful exploitation could allow an attacker to execute arbitrary co ... oval:org.secpod.oval:def:67628 The host is installed with Kibana before 6.8.2 or 7.x before 7.2.1 and is prone to a prototype pollution vulnerability. A flaw is present in the application, which fails to properly handle an issue in unspecified vectors. Successful exploitation could allow an attacker to cause cross-site-scripting ... oval:org.secpod.oval:def:67625 The host is installed with Kibana before 6.8.7 or 7.x before 7.6.1 and is prone to a HTTP request smuggling vulnerability. A flaw is present in the application, which fails to properly handle an issue in malformed HTTP headers. Successful exploitation could allow an attacker to cause HTTP request sm ... oval:org.secpod.oval:def:67624 The host is installed with Kibana before 6.8.7 or 7.x before 7.6.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle an issue in TLS handling code of Node.js. Successful exploitation could allow an attacker to cause Kibana to cras ... oval:org.secpod.oval:def:67626 The host is installed with Kibana before 6.8.7 or 7.x before 7.6.1 and is prone to a HTTP request smuggling vulnerability. A flaw is present in the application, which fails to properly handle malformed HTTP headers. Successful exploitation could allow an attacker to cause HTTP request smuggling atta ... oval:org.secpod.oval:def:502564 Red Hat OpenShift Container Platform is Red Hat"s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Security Fix: * A privilege escalation vulnerability exists in OpenShift Container Platform 3.x which allows for compromise of pods running ... |