Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG][opensearch-dashboards:2.25.0] #635

Open
shashank-shridhar opened this issue Dec 18, 2024 · 2 comments
Open

[BUG][opensearch-dashboards:2.25.0] #635

shashank-shridhar opened this issue Dec 18, 2024 · 2 comments
Labels
bug Something isn't working

Comments

@shashank-shridhar
Copy link

Hello,
Our security scans detected some security vulnerabilities in the Opensearch Dashboards No Security and Opensearch Project.

Following are the CVE numbers:

OS DASHBOARDS NO SECURITY
CVE-2023-45857
CVE-2024-21538
CVE-2024-6232

Opensearch Project Opensearch

CVE-2024-47535
CVE-2024-35195

Is there any timeline or plan as to address these vulnerabilities?

Thanks in advance.
@shashank-shridhar shashank-shridhar added bug Something isn't working untriaged Issues that have not yet been triaged labels Dec 18, 2024
@dblock dblock removed the untriaged Issues that have not yet been triaged label Jan 6, 2025
@dblock
Copy link
Member

dblock commented Jan 6, 2025

[Catch All Triage - 1, 2, 3, 4, 5, 6]

@seraphjiang
Copy link
Member

@shashank-shridhar

I could help to answer the OpenSearch Dashboards part.

CVE-2024-39338 There is a MEDIUM severity vulnerability affecting CPython. that is not part of OpenSearch Dashboards distribution.

@peterzhuamazon peterzhuamazon mentioned this issue Jan 30, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
Engineering Effectiveness Board
Status: 🆕 New
Milestone
No milestone
Development

No branches or pull requests
3 participants
@dblock @seraphjiang @shashank-shridhar