Moderate severityNVD Advisory· Published Mar 3, 2022· Updated Aug 3, 2024
CVE-2022-23710
CVE-2022-23710
Description
A cross-site-scripting (XSS) vulnerability was discovered in the Data Preview Pane (previously known as Index Pattern Preview Pane) which could allow arbitrary JavaScript to be executed in a victim’s browser.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.elasticsearch:elasticsearchMaven | >= 7.16.0, < 7.17.1 | 7.17.1 |
Affected products
2Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-m6gg-86c6-gfr9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-23710ghsaADVISORY
- discuss.elastic.co/t/elastic-stack-7-17-1-security-update/298447ghsax_refsource_MISCWEB
- security.netapp.com/advisory/ntap-20220325-0009ghsaWEB
- security.netapp.com/advisory/ntap-20220325-0009/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.