Server side request forgery vulnerability in Kibana - CVE-2019-7616 (MacOS)ID: oval:org.secpod.oval:def:67629 | Date: (C)2020-12-04 (M)2023-03-08 |
Class: VULNERABILITY | Family: macos |
The host is installed with Kibana before 6.8.2 or 7.x before 7.2.1 and is prone to a server side request forgery vulnerability. A flaw is present in the application, which fails to properly handle an issue in the graphite integration for Timelion visualizer. Successful exploitation could allow an attacker to access external URL resources as the Kibana process on the host system.
Platform: |
Apple Mac OS 11 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.15 |