CVE-2022-41906
OpenSearch Notifications Plugin contains a Server-Side Request Forgery (SSRF) flaw affecting OpenSearch Notifications versions 2.0.0 through 2.2.0. The issue could allow a privileged user to enumerate listening services or access resources beyond the plugin’s intended scope via HTTP requests. The...