{"containers": {"cna": {"affected": [{"product": "Search Guard Kibana Plugin", "vendor": "floragunn", "versions": [{"lessThan": "5.6.8-7", "status": "affected", "version": "unspecified", "versionType": "custom"}, {"lessThan": "6.x.y-12", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a) Kibana is configured to use Single-Sign-On as authentication method, one of Kerberos, JWT, Proxy, Client certificate. b) The kibanaserver user is configured to use HTTP Basic as the authentication method. c) Search Guard is configured to use an SSO authentication domain and HTTP Basic at the same time"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-287", "description": "CWE-287: Improper Authentication", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2019-08-23T13:30:26", "orgId": "9f311a02-c44f-4938-8530-9219246b8255", "shortName": "floragunn"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://search-guard.com/cve-advisory/"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://docs.search-guard.com/6.x-25/changelog-kibana-6.x-12"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@search-guard.com", "ID": "CVE-2019-13423", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Search Guard Kibana Plugin", "version": {"version_data": [{"version_affected": "<", "version_value": "5.6.8-7"}, {"version_affected": "<", "version_value": "6.x.y-12"}]}}]}, "vendor_name": "floragunn"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a) Kibana is configured to use Single-Sign-On as authentication method, one of Kerberos, JWT, Proxy, Client certificate. b) The kibanaserver user is configured to use HTTP Basic as the authentication method. c) Search Guard is configured to use an SSO authentication domain and HTTP Basic at the same time"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-287: Improper Authentication"}]}]}, "references": {"reference_data": [{"name": "https://search-guard.com/cve-advisory/", "refsource": "MISC", "url": "https://search-guard.com/cve-advisory/"}, {"name": "https://docs.search-guard.com/6.x-25/changelog-kibana-6.x-12", "refsource": "CONFIRM", "url": "https://docs.search-guard.com/6.x-25/changelog-kibana-6.x-12"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T23:49:24.978Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://search-guard.com/cve-advisory/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://docs.search-guard.com/6.x-25/changelog-kibana-6.x-12"}]}]}, "cveMetadata": {"assignerOrgId": "9f311a02-c44f-4938-8530-9219246b8255", "assignerShortName": "floragunn", "cveId": "CVE-2019-13423", "datePublished": "2019-08-23T13:30:26", "dateReserved": "2019-07-08T00:00:00", "dateUpdated": "2024-08-04T23:49:24.978Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:search-guard:search_guard:*:*:*:*:*:kibana:*:*", "matchCriteriaId": "902DAA8C-944C-4A60-AC8E-EA16E5E8D49F", "versionEndExcluding": "5.6.8-7", "vulnerable": true}, {"criteria": "cpe:2.3:a:search-guard:search_guard:*:*:*:*:*:kibana:*:*", "matchCriteriaId": "14FB43F9-4F47-467A-A83E-A6B99D8E1768", "versionEndExcluding": "6.2.3-12", "versionStartIncluding": "6.1.0-8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a) Kibana is configured to use Single-Sign-On as authentication method, one of Kerberos, JWT, Proxy, Client certificate. b) The kibanaserver user is configured to use HTTP Basic as the authentication method. c) Search Guard is configured to use an SSO authentication domain and HTTP Basic at the same time"}, {"lang": "es", "value": "Las versiones de Search Guard Kibana Plugin anteriores a 5.6.8-7 y anteriores a 6.xy-12 ten\u00edan el problema de que un usuario autenticado de Kibana pod\u00eda hacerse pasar por usuario de kibanaserver al proporcionar credenciales incorrectas cuando todas las siguientes condiciones ac son verdaderas: a) Kibana est\u00e1 configurado utilizar Single-Sign-On como m\u00e9todo de autenticaci\u00f3n, uno de Kerberos, JWT, Proxy, Certificado de cliente. b) El usuario de kibanaserver est\u00e1 configurado para usar HTTP Basic como m\u00e9todo de autenticaci\u00f3n. c) Search Guard est\u00e1 configurado para usar un dominio de autenticaci\u00f3n SSO y HTTP Basic al mismo tiempo"}], "id": "CVE-2019-13423", "lastModified": "2020-10-08T12:58:33.020", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-08-23T14:15:11.607", "references": [{"source": "security@search-guard.com", "tags": ["Vendor Advisory"], "url": "https://docs.search-guard.com/6.x-25/changelog-kibana-6.x-12"}, {"source": "security@search-guard.com", "tags": ["Vendor Advisory"], "url": "https://search-guard.com/cve-advisory/"}], "sourceIdentifier": "security@search-guard.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-287"}], "source": "security@search-guard.com", "type": "Secondary"}]}

{"bugzilla": {"description": "search-guard-kibana-plugin: Authenticated user could impersonate server user when providing wrong credentials", "id": "1747485", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1747485"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N", "status": "draft"}, "cwe": "CWE-290", "details": ["Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of the following conditions a-c are true: a) Kibana is configured to use Single-Sign-On as authentication method, one of Kerberos, JWT, Proxy, Client certificate. b) The kibanaserver user is configured to use HTTP Basic as the authentication method. c) Search Guard is configured to use an SSO authentication domain and HTTP Basic at the same time"], "name": "CVE-2019-13423", "package_state": [{"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Not affected", "package_name": "search-guard-kibana-plugin", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Not affected", "package_name": "search-guard-kibana-plugin", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.9", "fix_state": "Not affected", "package_name": "search-guard-kibana-plugin", "product_name": "Red Hat OpenShift Container Platform 3.9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "search-guard-kibana-plugin", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2019-08-23T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2019-13423\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-13423"], "threat_severity": "Moderate"}