CVE-2024-37288

CRITICAL LAB

Kibana - Remote Code Execution via YAML Deserialization in AI Tools Amazon Bedrock Connector

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-37288. PoCs published by exploitintel.

AI-analyzed exploit summary This repository contains a fully functional exploit for CVE-2024-37288, demonstrating insecure YAML deserialization in Kibana 8.15.0 via the Integration Assistant plugin. It includes multiple PoC scripts, a containerized lab environment, and detailed technical analysis of the vulnerability.

Description

A deserialization issue in Kibana can lead to arbitrary code execution when Kibana attempts to parse a YAML document containing a crafted payload. This issue only affects users that use Elastic Security’s built-in AI tools https://www.elastic.co/guide/en/security/current/ai-for-security.html and have configured an Amazon Bedrock connector https://www.elastic.co/guide/en/security/current/assistant-connect-to-bedrock.html .

Exploits (1)

github WORKING POC 1 stars

by exploitintel · pythonpoc

https://github.com/exploitintel/eip-pocs-and-cves/tree/main/CVE-2024-37288

View Code ZIP pw:eip

This repository contains a fully functional exploit for CVE-2024-37288, demonstrating insecure YAML deserialization in Kibana 8.15.0 via the Integration Assistant plugin. It includes multiple PoC scripts, a containerized lab environment, and detailed technical analysis of the vulnerability.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Kibana 8.15.0

Auth required

Prerequisites: Kibana Enterprise license (trial sufficient) · Integration Assistant plugin enabled · AI connector configured · Authenticated user access

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Mar 02, 2026 Full analysis →

References (1)

Core 1

Core References

Mitigation, Vendor Advisory

https://discuss.elastic.co/t/kibana-8-15-1-security-update-esa-2024-27-esa-2024-28/366119

Scores

CVSS v3 9.9

EPSS 0.0102

EPSS Percentile 58.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Lab Environment

EIP LAB

kibana docker pull ghcr.io/exploitintel/cve-2024-37288-kibana:latest

View in Library GitHub

Details

CWE

CWE-502

Status published

Products (1)

elastic/kibana 8.15.0

Published Sep 09, 2024

Tracked Since Feb 18, 2026