CVE-2022-23709

Name of the Vulnerable Software and Affected Versions Kibana (affected versions not specified)

Description A flaw was discovered in Kibana where users with Read access to the Uptime feature could modify alerting rules, allowing them to create new rules or overwrite existing ones. However, any new or modified rules would not be enabled, and these users could not modify alerting connectors. This means Read users could effectively disable existing alerting rules.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.