CVE-2023-36656 Information

Description

Cross Site Scripting (XSS) vulnerability in Jaegertracing Jaeger UI before v.1.31.0 allows a remote attacker to execute arbitrary code via the KeyValuesTable component.

Reference

https://github.com/mafintosh/json-markup/pull/15 https://github.com/jaegertracing/jaeger-ui/security/advisories/GHSA-vv24-rm95-q56r https://github.com/jaegertracing/jaeger-ui/pull/1498