CVE-2024-23443
MEDIUM4.9EPSS 5.4%Published: 6/21/2024Modified: 4/3/2025
Also known as:BIT-elk-2024-23443BIT-kibana-2024-23443
Description
A high-privileged user, allowed to create custom osquery packs 17 could affect the availability of Kibana by uploading a maliciously crafted osquery pack.
Affected packages (2)
- Bitnami/elkfrom 0, < 8.14.0
- Bitnami/kibanafrom 0, < 8.14.0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.9 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |