VDB
CVE-2024-23443
CVE-2024-23443
PUBLISHED
A high-privileged user, allowed to create custom osquery packs 17 could affect the availability of Kibana by uploading a maliciously crafted osquery pack.
EPSS 5.38% · 90.3th percentile
Risk Scores
EPSS Score
5.38%
90.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | elk | 0, 0, 0 |
| Bitnami | elk | 0 |
| Bitnami | kibana | 0, 0, 0 |
Exploit Intelligence
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- Osqery extension HP BIOS WMI (github-poc)
- https://discuss.elastic.co/t/kibana-8-14-0-7-17-22-security-update-esa-2024-11/361460 (circl)
- osquery_cve-2024-23443 (cve.org)
…and 32 more exploits
Timeline
- Mar 15, 2018 PoC Published
- Mar 29, 2024 PoC Published
- Mar 30, 2024 PoC Published
- Jun 13, 2024 CVE Published
- Jun 20, 2024 EPSS Score
- Jul 13, 2024 EPSS Score
- Aug 27, 2024 EPSS Score
- Sep 19, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Nov 3, 2024 EPSS Score
- Nov 26, 2024 EPSS Score
- Dec 20, 2024 EPSS Score