Vulnerability DatabaseCVE-2024-43707

CVE-2024-43707:
Kibana vulnerability analysis and mitigation

Overview

A high-severity vulnerability was identified in Kibana (CVE-2024-43707) where unauthorized users without access to Fleet could view Elastic Agent policies containing sensitive information. The vulnerability affects Kibana versions from 8.0.0 up to 8.15.0 and was disclosed on January 22, 2025 (Elastic Discussion, Security Online).

Technical details

The vulnerability has been assigned a CVSSv3.1 score of 7.7 (High) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N. The issue specifically allows users without Fleet access to view Elastic Agent policies, with the sensitivity of exposed information depending on the integrations enabled for the Elastic Agent and their respective versions (Elastic Discussion).

Impact

The vulnerability could lead to unauthorized access to sensitive information stored within Elastic Agent policies. The nature and extent of the exposed sensitive information vary based on the specific integrations enabled for the Elastic Agent and their versions (Security Online).

Mitigation and workarounds

The vulnerability has been patched in Kibana version 8.15.0. Users running affected versions are strongly encouraged to upgrade to version 8.15.0 immediately to address this security issue (Security Online, Elastic Discussion).