{"id":"CVE-2024-23443","details":"A high-privileged user, allowed to create custom osquery packs 17 could affect the availability of Kibana by uploading a maliciously crafted osquery pack.","aliases":["BIT-elk-2024-23443","BIT-kibana-2024-23443"],"modified":"2026-03-14T12:26:52.733545Z","published":"2024-06-19T14:15:13.360Z","references":[{"type":"ADVISORY","url":"https://discuss.elastic.co/t/kibana-8-14-0-7-17-22-security-update-esa-2024-11/361460"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/elastic/kibana","events":[{"introduced":"ee89fda8a17eff9c93f7400c102edf76cb4d7d8a"},{"fixed":"43696930d77d3bb567e445624874eab9cf363872"},{"introduced":"57ca5e139a33dd2eed927ce98d8231a1f217cd15"},{"fixed":"3bc2979d1d65982aee7d13ebd65434c3470dc808"}],"database_specific":{"versions":[{"introduced":"7.0.0"},{"fixed":"7.17.22"},{"introduced":"8.0.0"},{"fixed":"8.14.0"}]}}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-23443.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H"}]}