Kibana Timelion Visualizer Remote Javascript OS Command Injection Exploit

An arbitrary code execution vulnerability in the Kibana Timelion visualizer allows an attacker with access to the application to send a request that will attempt to execute javascript code with permissions of the Kibana process on the host system.
Vulnerabilty ID: 
Released Date: 
Sunday, November 3, 2019 - 18:00