{
  "threat_severity" : "Moderate",
  "public_date" : "2025-12-18T22:32:17Z",
  "bugzilla" : {
    "description" : "Kibana: Kibana: Privilege escalation and information disclosure via improper authorization",
    "id" : "2423747",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2423747"
  },
  "cvss3" : {
    "cvss3_base_score" : "4.3",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
    "status" : "draft"
  },
  "cwe" : "CWE-863",
  "details" : [ "Improper Authorization (CWE-285) in Kibana can lead to privilege escalation (CAPEC-233) by allowing an authenticated user to bypass intended permission restrictions via a crafted HTTP request. This allows an attacker who lacks the live queries - read permission to successfully retrieve the list of live queries.", "A flaw was found in Kibana. An authenticated user can exploit this vulnerability by sending a specially crafted HTTP request, which bypasses intended permission restrictions. This improper authorization allows an attacker, who lacks the \"live queries - read\" permission, to successfully retrieve the list of live queries, leading to information disclosure and potential privilege escalation." ],
  "statement" : "This vulnerability is rated Moderate for Red Hat. An authenticated user in Kibana, as deployed in OpenShift Container Platform, can exploit an improper authorization flaw to bypass intended permission restrictions. This allows the user to retrieve a list of live queries, leading to information disclosure and potential privilege escalation.",
  "package_state" : [ {
    "product_name" : "Logging Subsystem for Red Hat OpenShift",
    "fix_state" : "Fix deferred",
    "package_name" : "openshift-logging/kibana6-rhel8",
    "cpe" : "cpe:/a:redhat:logging:5"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2025-68422\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-68422\nhttps://discuss.elastic.co/t/kibana-8-19-7-9-1-7-and-9-2-1-security-update-esa-2025-39/384187" ],
  "name" : "CVE-2025-68422",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}