CVE-2022-38778

CVSS V2 None CVSS V3 None
Description
A flaw (CVE-2022-38900) was discovered in one of Kibana’s third party dependencies, that could allow an authenticated user to perform a request that crashes the Kibana server process.
Overview
  • CVE ID
  • CVE-2022-38778
  • Assigner
  • bressers@elastic.co
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-02-08T21:15:10
  • Last Modified Date
  • 2023-02-16T19:42:06
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:decode-uri-component_project:decode-uri-component:*:*:*:*:*:node.js:*:* 1 OR 0.2.1
cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:* 1 OR 7.0.0 7.17.9
cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:* 1 OR 8.0.0 8.6.1
History
Created Old Value New Value Data Type Notes
2023-04-17 07:25:14 Added to TrackCVE
2023-04-17 07:25:16 Weakness Enumeration new