Back to search
CVE-2019-7618
Published: Oct 1, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
A local file disclosure flaw was found in Elastic Code versions 7.3.0, 7.3.1, and 7.3.2. If a malicious code repository is imported into Code it is possible to read arbitrary files from the local filesystem of the Kibana instance running Code with the permission of the Kibana system user.
| Vendor | Product | Versions |
|---|---|---|
Elastic | Elastic Code | affected 7.3.0, 7.3.1, and 7.3.2 |
Weaknesses (CWE)
References
https://staging-website.elastic.co/community/security
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now