{"vulnerability": "CVE-2022-38299", "sightings": [{"uuid": "c6e07807-26b6-4726-a535-28ee6f995636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-38299", "type": "seen", "source": "https://t.me/cibsecurity/49620", "content": "\u203c CVE-2022-38299 \u203c\n\nAn issue in the Elasticsearch plugin of Appsmith v1.7.11 allows attackers to connect disallowed hosts to the AWS/GCP internal metadata endpoint.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:39.000000Z"}]}