| Revision Date: | 2022-05-22 | Version: | 1 |
| Title: | CVE-2020-7013 |
| Description: |
Kibana versions before 6.8.9 and 7.7.0 contain a prototype pollution flaw in TSVB. An authenticated attacker with privileges to create TSVB visualizations could insert data that would cause Kibana to execute arbitrary code. This could possibly lead to an attacker executing code with the permissions of the Kibana process on the host system.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | Mitre CVE-2020-7013
SUSE CVE-2020-7013
|
| Platform(s): | SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
| Product(s): | |
| Definition Synopsis |
| Release Information SUSE OpenStack Cloud 8 is installed
OR SUSE OpenStack Cloud Crowbar 8 is installed
AND kibana is not affected
|
| Definition Synopsis |
| Release Information
SUSE OpenStack Cloud 9 is installed
OR SUSE OpenStack Cloud Crowbar 9 is installed
AND kibana is not affected
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND kibana is not affected
|