{"vulnerability": "cve-2019-7609", "sightings": [{"uuid": "d8db2690-1536-4a9b-89f2-cc06814a4748", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "https://t.me/arpsyndicate/993", "content": "#ExploitObserverAlert\n\nCVE-2019-7609\n\nDESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-7609. Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.\n\nFIRST-EPSS: 0.963650000\nNVD-IS: 6.0\nNVD-ES: 3.9", "creation_timestamp": "2023-12-03T17:58:21.000000Z"}, {"uuid": "64f205ac-ff5c-44ca-86af-d4c606b502eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "published-proof-of-concept", "source": "https://t.me/canyoupwnme/6114", "content": "EE | Exploiting prototype pollution \u2013 RCE in Kibana (CVE-2019-7609) | https://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609/", "creation_timestamp": "2019-11-07T03:11:02.000000Z"}, {"uuid": "3aa03d43-4d42-4693-b746-437b2fe3dd30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "https://gist.github.com/Darkcrai86/08cc0dfada7bb2eca9f9688eb97a8081", "content": "", "creation_timestamp": "2025-09-22T10:52:51.000000Z"}, {"uuid": "5eb2a518-ecf6-404f-bed1-4f3fea5bb90d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:12:59.000000Z"}, {"uuid": "f111b642-de61-4327-8de2-dcc64f446a4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/c6a872ff-8a1a-4af2-a47c-daa068514f62", "content": "", "creation_timestamp": "2026-02-02T12:28:30.290009Z"}, {"uuid": "ede563da-d830-4af5-8d5b-932c7d0f3cbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "published-proof-of-concept", "source": "https://t.me/antichat/6996", "content": "EE | Exploiting prototype pollution \u2013 RCE in Kibana (CVE-2019-7609) | https://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609/", "creation_timestamp": "2019-11-07T16:56:43.000000Z"}, {"uuid": "0d2623da-cb23-4efb-b627-623765117c45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/4953", "content": "RCE via Prototype Pollution in kibana - CVE-2019-7609 - Bug Bounty Reports Explained\n\nhttps://m.youtube.com/watch?feature=youtu.be&v=KVDOIFeRaPQ", "creation_timestamp": "2020-12-06T01:15:09.000000Z"}, {"uuid": "039c1b26-c4ac-4280-a6b0-868e55d28845", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "25c04a61-a9a8-4558-bbb8-28e745515a00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971197", "content": "", "creation_timestamp": "2024-12-24T20:25:43.992449Z"}, {"uuid": "818b4443-cdc9-4671-a091-61a9944cee95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:17.000000Z"}, {"uuid": "fac12c16-d681-4664-870e-bffa7d599711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "exploited", "source": "https://t.me/CyberSecurityTechnologies/436", "content": "#Red_Team_Tactics\n1. Exploiting prototype pollution - \nRCE in Kibana (CVE-2019-7609)\nhttps://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609\n]-> PoC: https://github.com/LandGrey/CVE-2019-7609\n\n2. Staying Hidden on the Endpoint: Evading Detection with Shellcode\nhttps://cloud.google.com/blog/topics/threat-intelligence/staying-hidden-on-the-endpoint-evading-detection-with-shellcode\n]-> https://github.com/fireeye/DueDLLigence", "creation_timestamp": "2024-10-21T18:06:12.000000Z"}, {"uuid": "4596b29e-b868-469d-a7e7-c3892d694f52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:44.000000Z"}, {"uuid": "a9f4d44e-d522-40d3-ad60-ba9cbe815a36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:25.000000Z"}, {"uuid": "e887a9df-86e8-4001-914f-b316e5ab7e18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:12:58.000000Z"}, {"uuid": "13a3ccbd-0dde-48d6-8dca-fe3618aa3536", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/kibana_timelion_prototype_pollution_rce.rb", "content": "", "creation_timestamp": "2023-09-08T11:05:09.000000Z"}, {"uuid": "4fbd1ce0-45df-4e15-a307-a08cae1e55d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-7609", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/c6a872ff-8a1a-4af2-a47c-daa068514f62", "content": "", "creation_timestamp": "2026-02-02T12:28:30.290009Z"}]}