A flaw (CVE-2022-38900) was discovered in one of Kibana’s third party dependencies, that could allow an authenticated user to perform a request that crashes the Kibana server process.
[
{
"vendor": "Elastic",
"product": "kibana",
"versions": [
{
"version": "Versions 7.0.0 through 7.17.8 and 8.0.0 through 8.6.0",
"status": "affected"
}
]
}
]