Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-56702
HistoryJul 08, 2022 - 12:00 a.m.

Vega Charts Kibana跨站脚本漏洞

2022-07-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
30
vega charts
kibana
cross-site scripting
vulnerability
json
html5 canvas
svg
javascript
attacker
browser
exploit

EPSS

0.001

Percentile

33.5%

JSON

Vega is a Javscript-based software from the Vega team that can be used to create interactive visual displays. The software can describe data visualizations using JSON format and generate interactive views using HTML5 Canvas or SVG. A cross-site scripting vulnerability exists in Vega Charts Kibana. An attacker could exploit this vulnerability to execute arbitrary JavaScript in a vulnerable browser.

Related

cvelist 1
prion 1
nessus 2
openvas 1
redhatcve 1
osv 1
cve 1
nvd 1
cvelist
cvelist
CVE-2022-23713
2022-07-06 13:56:13
prion
prion
Cross site scripting
2022-07-06 14:15:00
nessus
nessus
Kibana 7.0.0 < 7.17.5 Cross-Site Scripting
2023-01-11 00:00:00
Kibana 8.0.0 < 8.3.0 Cross-Site Scripting
2023-01-11 00:00:00
openvas
openvas
Elastic Kibana 7.0.0 < 7.17.5, 8.0.0 <= 8.2.3 XSS Vulnerability (ESA-2022-08)
2022-07-11 00:00:00
redhatcve
redhatcve
CVE-2022-23713
2023-02-22 04:59:16
osv
osv
CVE-2022-23713
2022-07-06 14:15:18
cve
cve
CVE-2022-23713
2022-07-06 14:15:18
nvd
nvd
CVE-2022-23713
2022-07-06 14:15:18

EPSS

0.001

Percentile

33.5%

JSON
Related for CNVD-2022-56702
cvelist1prion1nessus2openvas1redhatcve1osv1cve1nvd1