CVE-2019-7610

Name of the Vulnerable Software and Affected Versions Kibana versions prior to 6.6.1

Description The issue is related to insufficient argument validation in the Kibana service, specifically with the xpack.security.audit.enabled component. This can be exploited by a remote attacker to execute arbitrary commands. If the xpack.security.audit.enabled setting is set to true, an attacker could send a request to attempt to execute JavaScript code, potentially leading to the execution of arbitrary commands with the permissions of the Kibana process on the host system.

Recommendations For versions prior to 6.6.1, update to version 6.6.1 or later to resolve the issue. As a temporary workaround, consider setting xpack.security.audit.enabled to false to minimize the risk of exploitation. Restrict access to the security audit logger to prevent potential attacks.