cve/CVE-2024-37287.md at a8969e132322a214e7b78da5711159d6f891f0ab

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-19 17:30:12 +00:00

0xMarcio a8969e1323 Update CVE sources 2024-08-14 18:26

2024-08-14 18:26:11 +00:00

Description

A flaw allowing arbitrary code execution was discovered in Kibana. An attacker with access to ML and Alerting connector features, as well as write access to internal ML indices can trigger a prototype pollution vulnerability, ultimately leading to arbitrary code execution.

POC

Reference

No PoCs from references.

Github

https://github.com/fkie-cad/nvd-json-data-feeds
https://github.com/tanjiti/sec_profile

895 B Raw Blame History

CVE-2024-37287

Description

POC

Reference

Github

895 B

Raw Blame History