CVE-2022-4735

Name of the Vulnerable Software and Affected Versions asrashley dash-live (affected versions not specified)

Description A problematic vulnerability was found in the function ready of the file static/js/media.js of the component DOM Node Handler. This issue leads to cross-site scripting and can be initiated remotely.

Recommendations Apply the patch with the name 24d01757a5319cc14c4aa1d8b53d1ab24d48e451 to fix this issue. As a temporary workaround, consider disabling the ready function of the DOM Node Handler component until the patch is applied. Restrict access to the static/js/media.js file to minimize the risk of exploitation.