Lucene search
China National Vulnerability DatabaseCNVD-2022-56702HistoryJul 08, 2022 - 12:00 a.m.
Vega Charts Kibana跨站脚本漏洞
2022-07-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
26
0.001 Low
EPSS
Percentile
33.5%
Vega is a Javscript-based software from the Vega team that can be used to create interactive visual displays. The software can describe data visualizations using JSON format and generate interactive views using HTML5 Canvas or SVG. A cross-site scripting vulnerability exists in Vega Charts Kibana. An attacker could exploit this vulnerability to execute arbitrary JavaScript in a vulnerable browser.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Vega Vega Charts Kibana>=7.0.0, | lt | 7.17.5 | |
| Vega Vega Charts Kibana>=8.0.0, | le | 8.2.3 |
Related
prion
prion
Cross site scripting
2022-07-06 14:15:00
cvelist
cvelist
CVE-2022-23713
2022-07-06 13:56:13
redhatcve
redhatcve
CVE-2022-23713
2023-02-22 04:59:16
nvd
nvd
CVE-2022-23713
2022-07-06 14:15:18
osv
osv
CVE-2022-23713
2022-07-06 14:15:18
nessus
nessus
Kibana 8.0.0 < 8.3.0 Cross-Site Scripting
2023-01-11 00:00:00
Kibana 7.0.0 < 7.17.5 Cross-Site Scripting
2023-01-11 00:00:00
cve
cve
CVE-2022-23713
2022-07-06 14:15:18
openvas
openvas